AppSec and DevSecOps Newsletters I Follow

Photo by Brett Jordan on Unsplash

I was recently asked which Application Security/DevSecOps newsletters I subscribe to.

Here’s the list:

• Reasonable AppSec by Chris Romeo: https://appsec.beehiiv.com/
• WeHackPurple by Tanya Janca (now called The Semgrep Newsletter as Tanya joined Semgrep): https://get.semgrep.dev/Newsletter.html
• TL;DR Sec by Clint Gibler: https://tldrsec.com/
• SANS @RISK: https://www.sans.org/newsletters/at-risk/
• SANS NewsBytes: https://www.sans.org/newsletters/newsbites/

What other great AppSec newsletters would you recommend? I’m always looking to improve my signal sources, so please share in the comments your go-to newsletters around application security and DevSecOps.

Also check out my podcast recommendations in this blog post.

Follow me on Twitter: https://twitter.com/securestep9