AppSec Labs to pump yourself Release v.2.0.0

April 2, 2026·49 views

🛠 AppSec Labs to pump yourself Release v.2.0.0

Salute, I’m back with an update on the labs, but this time it’s a really cool move forward and development for both of us.

Look what a cool thing he added:

• Preparing the working environment

• Setting up Git, GPG and GitHub CLI

• Gistup Reporting Guide

• Syntax, data types and patterns for DevSecOps using yaml

• Troubleshooting

Updated and styled:

• Software licenses

• Application Security Toolchain

• Application

Now I’m pumping up the labs, so far I’ve updated the first three with cross-links and I’ll be adding more very soon, next time I’ll release new labs 🫶

Design and UI/UX

• Complete redesign of the design system: tokens.css was created with CSS custom properties (colors, typography, spacing, radii, transitions)

• Removed render-blocking

• Redesigned adaptive: hero-section, lab-cards, TG-widget, sidebar, tables

• TG widget: the embed is hidden on the mobile phone, leaving a compact channel card

• Redesigned 404 page: brand fonts (Unbounded + Roboto), SVG logo as background, adaptive via clamp()

• Added repo-stats.js: stars, forks and release version in the header via GitHub API with caching in localStorage

• CSS optimization

• Added logo animation to hero banner

Content and materials

• Licenses page (licenses.md): 19 → 41 licenses, divided into 7 categories (Permissive, Weak/Strong Copyleft, Network Copyleft, Public Domain, Creative Commons, Source-Available)

• AppSec Toolchain page (appsec_tt.md): 22 → 29 cards, divided into 8 sections (added MAST, API Security, Fuzzing, IaC Security, KSPM, VDP, WAF, LLM Security)

• Application (APPENDIX.md): 8 → 16 cards with context for listeners (Nmap, SAST, SCA, DAST, CIS Benchmark, Secret Detection, GitHub Actions, Risk Analysis)

• Troubleshooting page created: ~20 cards with solutions for Git, Linux, Docker, SAST/SCA, DAST, CI/CD, Python

• Created YAML Cheatsheet: syntax, data types, multiline strings, anchors, pitfalls, examples for GitHub Actions/Docker Compose/Semgrep

Stay tuned! 🙃

#appsec #devsecops #roadmap #specialty #toolchain #techsolution #gost #paper #course #reco #sast #sca #dast #sbom #containersecurity #secrets #riskanalys #techsolution

#appsec#devsecops#roadmap#specialty#toolchain#techsolution#gost#paper#course#reco#sast#sca#dast#sbom#containersecurity#secrets#riskanalys

Open in Telegram