{"id":28727409,"url":"https://github.com/cossacklabs/security-guides","last_synced_at":"2026-02-14T15:31:05.807Z","repository":{"id":281879373,"uuid":"901545967","full_name":"cossacklabs/security-guides","owner":"cossacklabs","description":"Tips, tricks, useful links on building and breaking secure systems","archived":false,"fork":false,"pushed_at":"2025-09-21T22:58:21.000Z","size":1455,"stargazers_count":2,"open_issues_count":0,"forks_count":0,"subscribers_count":7,"default_branch":"main","last_synced_at":"2025-09-22T00:23:59.928Z","etag":null,"topics":["appsec","hardware","risks","security","ssdlc"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"apache-2.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/cossacklabs.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null}},"created_at":"2024-12-10T21:26:59.000Z","updated_at":"2025-09-21T22:58:24.000Z","dependencies_parsed_at":"2025-03-11T16:50:51.236Z","dependency_job_id":null,"html_url":"https://github.com/cossacklabs/security-guides","commit_stats":null,"previous_names":["cossacklabs/security-guides"],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/cossacklabs/security-guides","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cossacklabs%2Fsecurity-guides","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cossacklabs%2Fsecurity-guides/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cossacklabs%2Fsecurity-guides/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cossacklabs%2Fsecurity-guides/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/cossacklabs","download_url":"https://codeload.github.com/cossacklabs/security-guides/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/cossacklabs%2Fsecurity-guides/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":29447965,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-02-14T14:10:32.461Z","status":"ssl_error","status_checked_at":"2026-02-14T14:09:49.945Z","response_time":53,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["appsec","hardware","risks","security","ssdlc"],"created_at":"2025-06-15T14:39:37.538Z","updated_at":"2026-02-14T15:31:05.788Z","avatar_url":"https://github.com/cossacklabs.png","language":null,"funding_links":[],"categories":[],"sub_categories":[],"readme":"## Introduction \n\nThese guides are short lists of concepts and links that we hand out at our private workshops and to our customers sometimes. They could have wider usability and applicability, that's why we chose to put them out publicly.\n\n**Disclaimer!**  \n\nThese guides are based on publicly available information and professional experience. They do not include proprietary information, trade secrets, or unique technical \"know-hows.\" More often than not, defensive security is about applying common knowledge efficiently, than access to esoteric techniques. Because [Kerckhoffs's principle](https://en.wikipedia.org/wiki/Kerckhoffs%27s_principle) has much wider applicability than cryptography.\n\nThe recommendations provided are intended to offer general guidance and support informed decision-making. Please use the information responsibly!\n\n## Building information security program\n\n[Building information security program](building-infosec-program.md)\n\n## Product security tips \n\n[Product security tips ](product-security-tips.md)\n\n## Contacts\n\nIf you want to ask a technical question, report a bug or suggest a feature, feel free to start a [discussion here on GitHub](https://github.com/cossacklabs/security-guides/discussions). Otherwise, write us an email [dev@cossacklabs.com](dev@cossacklabs.com).\n\n[![Blog](https://img.shields.io/badge/blog-cossacklabs.com-orange.svg)](https://cossacklabs.com/) [![LinkedIn CossackLabs](https://img.shields.io/badge/linkedin-%40cossacklabs-blue.svg)](https://www.linkedin.com/company/cossack-labs/) [![Twitter CossackLabs](https://img.shields.io/badge/twitter-cossacklabs-black.svg)](http://twitter.com/cossacklabs) [![Dev.to CossackLabs](https://img.shields.io/badge/dev.to-%40cossacklabs-lightgrey.svg)](https://dev.to/@cossacklabs/)\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcossacklabs%2Fsecurity-guides","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fcossacklabs%2Fsecurity-guides","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fcossacklabs%2Fsecurity-guides/lists"}