Fady S. Ghatas

Understanding the OWASP Top 10 and Its Role in Technical Due Diligence

Understanding the OWASP Top 10 and Its Role in Technical Due Diligence

The OWASP Top 10 is a highly respected guide that identifies the most critical web application...

8 areas of Typescript: VR, IaC, Extensions, Robots, Games, WebAssembly, runners and cross-platform.

8 areas of Typescript: VR, IaC, Extensions, Robots, Games, WebAssembly, runners and cross-platform.

We are actively using typescript for most of our development work nowadays. Mainly for backend and...

Why Typescript? Is Typescript Frontend or Backend?

Why Typescript? Is Typescript Frontend or Backend?

TypeScript is a programming language that was developed and maintained by Microsoft. It is a...

Preparing for a Tech Due Diligence: Step-by-Step Guide for Startups

Preparing for a Tech Due Diligence: Step-by-Step Guide for Startups

Tech due diligence can be a pivotal moment for your startup. Investors want a clear view of your...

Understanding the Triple Chasm Model: Funding & Due Diligence at Each Stage and What Makes it Different

Understanding the Triple Chasm Model: Funding & Due Diligence at Each Stage and What Makes it Different

The journey from innovation to a scalable, successful product is fraught with challenges, and the...

Work factor and money-based KPIs in technical teams: Putting a price tag on a line of code?

Work factor and money-based KPIs in technical teams: Putting a price tag on a line of code?

Credit: The title of this post is directly inspired by Oxford philosopher Michael Sandel’s...

Outsourcing in Dev Teams: A Blessing or a Curse?

Outsourcing in Dev Teams: A Blessing or a Curse?

Outsourcing in software development is a widely debated practice, with some companies viewing it...

Former-developers Code Ownership: Governance’s First Enemy

Former-developers Code Ownership: Governance’s First Enemy

Identifying Former Developers and Their Code Contributions Former developers are individuals who...

A Technical Due Diligence Guide for Investing in Software Teams

A Technical Due Diligence Guide for Investing in Software Teams

Whether you're performing a routine audit and preparing for a major transformation in your own...

Licensing assessment in Tech Due Diligence: MIT vs GPL vs LGPl vs AGPL vs Mozilla (MPL) vs Apache vs BSD

Licensing assessment in Tech Due Diligence: MIT vs GPL vs LGPl vs AGPL vs Mozilla (MPL) vs Apache vs BSD

In today’s software landscape, open-source software (OSS) has become an integral part of...

Understanding Software Bill of Materials (SBOM): A Crucial Tool in Software Supply Chain Security

Understanding Software Bill of Materials (SBOM): A Crucial Tool in Software Supply Chain Security

Managing and securing code involves more than just internal development processes; With software...

Static Application Security Testing (SAST): Is the team careful writing the code?

Static Application Security Testing (SAST): Is the team careful writing the code?

When building secure software, one of the key factors that can make or break a system is the care...

« Older Entries