# AppSec Newsletter 0040

## Links

* 🎖️ [Michelle Mesquita| DevSecOps com GitHub Actions](https://www.udemy.com/course/devsecops-com-github-actions/?couponCode=KEEPLEARNINGBR)
    
* [Github | Secret scanning expands default pattern support](https://github.blog/changelog/2025-01-09-secret-scanning-expands-default-pattern-support/)
    
* [MITRE | QUANTUM COMPUTING: QUANTIFYING THE CURRENT STATE OF THE ART TO ASSESS CYBERSECURITY THREATS](https://www.mitre.org/sites/default/files/2025-01/PR-24-3812-Quantum-Computing-Quantifying-Current-State-Assess-Cybersecurity-Threats.pdf)
    
* [CyberSecTools | The Largest Hub of Cybersecurity Tools](https://cybersectools.com/)
    
* [CrowdStrike | Improving Kubernetes Security: Lessons from an Istio Configuration Finding](https://www.crowdstrike.com/en-us/blog/istio-configuration-finding-improve-kubernetes-security/)
    
* [xvnpw | Forget Threats, Mitigations are All You REALLY Need](https://xvnpw.github.io/posts/forget-threats-mitigations-are-all-you-really-need/)
    
* [OWASP Smart Contract Top 10](https://owasp.org/www-project-smart-contract-top-10/#)
    
* [How Palantir Secures Source Control (Software Supply Chain Security Series, #3)](https://blog.palantir.com/how-palantir-secures-source-control-105c49079eae)
    
* [Socket | Go Supply Chain Attack: Malicious Package Exploits Go Module Proxy Caching for Persistence](https://socket.dev/blog/malicious-package-exploits-go-module-proxy-caching-for-persistence)
    
* [Google | Secure by Design: Google's Blueprint for a High-Assurance Web Framewor](https://bughunters.google.com/blog/6644316274294784/secure-by-design-google-s-blueprint-for-a-high-assurance-web-framework)k
    

### **Siga o Guia de AppSec nas redes!**

* Youtube: [**youtube.com/@GuiadeAppSec**](http://youtube.com/@GuiadeAppSec)
    
* Twitter / X: [**twitter.com/guiadeappsec**](http://twitter.com/guiadeappsec)
    
* Site: [**guiadeappsec.com.br**](http://guiadeappsec.com.br/)
