September Newsletter:
Custom Authentication
Scripts, and More!

The Changelog: New Features to Kaakaww About

Authentication Support Level Up ⬆️ 

We know that getting authentication configured correctly can be tricky. And, we know that no two authentication scenarios are the same. 

 That's why we have introduced custom authentication scripts. 

 Whether you need to customize your auth for scanning APIs, running in test environments, or supporting token timeouts, you can now customize the StackHawk YAML to support your specific auth scenario.

Read the Docs

Starting in 60 Minutes!

Tune in at 10 AM PT today as Clint Gibler, Head of Security Research at r2c, and Scott Gerlach, Chief Security Officer at StackHawk, dive into what's new with application security tooling. 

They will talk about the trends impacting security right now and give a live demo showing how to run StackHawk and Semgrep in CI/CD.

Save Your Spot

API-Driven App Adds Now In Beta

Modern software delivery teams want to leverage automation to make application security testing as efficient as possible, especially if they have a large number of apps or microservices that require testing. 

That’s why we are exposing the StackHawk API so teams can add applications to StackHawk without ever entering the Web UI. 

We are putting the polish on this feature and are looking for beta testers. If your team has tons of apps or microservices you are looking to test, register to be part of our public beta!

Register

Other Happenings

📺 Hawk Talks

• [Podcast] Web Security w/ Scott Gerlach on Web Perspectives

• [From the Archives] ZAP Deep Dive: The Sites Tree

• [From the Archives] ZAP Deep Dive: Report Generation

📖 Reading Material

• NodeJS Command Injection: Examples and Prevention

• Golang Content Security Policy Guide: What It Is and How to Enable It

• [From the Archives] Application Security Observability

• [From the Archives] How Security-Based Development Should Work

📽 Virtual Events

• October 5-7: DevOps Enterprise Summit

• October 5-7: SnykCon

• October 12: CTO Summit - Improving AppSec

• October 13-15: KubeCon + CloudNativeCon

• October 20-21: Vue.js

• October 22 & 25: React Advanced London

• October 26-28: API World

💼 Jobs @ StackHawk

• Test Automation Engineer

• Solutions Architect

• Developer Advocate

• Head of Marketing

❤️ Give Us Some Love

Share the goodness of developer-centric application security. We are always grateful for recommendations and referrals! We’d love for you to share StackHawk with your friends and colleagues, or leave us a review on g2.