{"id":97100,"date":"2024-08-06T06:14:13","date_gmt":"2024-08-06T06:14:13","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?post_type=learn&#038;p=97100"},"modified":"2024-11-06T08:49:44","modified_gmt":"2024-11-06T08:49:44","slug":"how-to-secure-your-software-against-malicious-code","status":"publish","type":"learn","link":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/","title":{"rendered":"How to Secure Your Software Against Malicious Code"},"content":{"rendered":"<h2 class=\"article-anchor\" id=\"article-anchor-1\">Summary<\/h2>\n<blockquote>\n<p>In the world of application security,\u00a0malicious code\u00a0is a growing issue, especially as developers start leaning on AI code-generating tools to speed up the pace of application development. In this article, we will look at what malicious code is, how\u00a0malicious package protection\u00a0works, and the best practices for implementing\u00a0malicious code security\u00a0strategies as part of a comprehensive application security solution.<\/p>\n<\/blockquote>\n<h2 id=\"h.joasy13ghkuf\" class=\"article-anchor\">What is a Malicious Code?<\/h2>\n<p><a href=\"https:\/\/checkmarx.com\/glossary\/malicious-code\/\">Malicious code<\/a> refers to any type of software or script intentionally designed to cause harm, exploit vulnerabilities, or compromise the integrity, confidentiality, or availability of a system. Malicious code can carry a wide range of cyber risks, including viruses and worms, ransomware, data exfiltration, and spyware. Malicious code may be delivered in the guise of a useful open-source software (OSS) package that looks like it\u2019s intended to perform a legitimate function, but in reality, it is created to gain unauthorized access to your systems, steal data, disrupt operations, or even mine for Bitcoin using your resources.<\/p>\n<h2 id=\"h.ui3n8gx80acm\" class=\"article-anchor\">What is\u00a0Malicious Package Protection?<\/h2>\n<p>As malicious code is such a prominent threat, malicious package protection consists of the strategies, technologies, and processes that enterprises use to safeguard their systems against any <a href=\"https:\/\/checkmarx.com\/product\/malicious-packages\/\">malicious software packages<\/a>\u00a0that may expose their business to risk.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter wp-image-97102 size-full\" src=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/Malicious-package-attack-diagram.png\" alt=\"Malicious package protection diagram\" width=\"1024\" height=\"306\" srcset=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/Malicious-package-attack-diagram.png 1024w, https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/Malicious-package-attack-diagram-300x90.png 300w, https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/Malicious-package-attack-diagram-768x230.png 768w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/p>\n<p>In the context of application development, OSS packages are easily downloadable collections of pre-written code that developers use to quickly and easily add functionality to their applications. These packages are often sourced from widely used code repositories, which are easy to access, free of charge, and simple to customize &#8211; which is why they are increasingly popular with development teams. Popular repositories include GitHub Packages, npm, PyPI, and NuGet Gallery.<\/p>\n<p>However, not all OSS packages are trustworthy; some <a href=\"https:\/\/checkmarx.com\/blog\/a-beautiful-factory-for-malicious-packages\/\">contain malicious code<\/a>\u00a0intentionally inserted by\u00a0a threat actor in order to perpetrate an attack.<\/p>\n<p>Malicious package protection is about minimizing the risks of utilizing open-source packages, and involves mechanisms such as automated scanning tools, dependency checks, manual research, and stringent validation processes to ensure that only safe and verified packages are used in software development. By implementing these measures, organizations can significantly reduce the risk of incorporating third-party code into their applications.<\/p>\n<h2 id=\"h.s18gp0nt0j7k\" class=\"article-anchor\">Why is Protection from\u00a0Malicious Code\u00a0Critical for Enterprises?<\/h2>\n<p>Protecting against malicious code needs to be a priority for enterprise CISOs, AppSec teams, and developers, as the implications of a security breach or sensitive data loss can be catastrophic. Not only will businesses have to handle the financial cost of downtime, business disruption, reputational damage, and lost customers, but there are often compliance ramifications as well, including penalties and legal fees.<\/p>\n<p>Malicious code is also becoming more of a challenge in the era of open source collaboration, where developers want to increasingly rely on open-source software packages such as Docker container images, Helm charts, and Debian packages for example to speed up the pace of development or satisfy dependency requirements.<\/p>\n<h2 id=\"h.zhvsg1yodill\" class=\"article-anchor\">Key Considerations for Choosing an Effective\u00a0Malicious Code Security\u00a0Tool<\/h2>\n<p>When you\u2019re thinking about how to implement security tools to protect against the presence of malicious code, it\u2019s important to consider\u00a0the role of the developer.\u00a0The traditional friction between security and development teams stems from developers who don\u2019t want security to feel like a hurdle in the way of their innovation and agility.<\/p>\n<p>To solve this challenge, AppSec teams need to provide developers with a convenient way to secure against malicious code adoption, within the scope of their regular workflows. Even for developers without deep security expertise, an application security platform that offers security training, malware detection, and actionable remediation advice inside the developer\u2019s Integrated Development Environment (IDE) can go a long way toward protecting the enterprise from malicious code, while empowering developers with the autonomy and agility that they want and need.<\/p>\n<p>Another consideration is\u00a0the concept of exploitability.\u00a0Because development and security teams are drowning in a sea of security alerts, it\u2019s crucial for a malicious package protection solution to prioritize discovered risks. Two highly effective ways to accomplish this are to analyze source code to determine which malicious code is being called (this is known as\u00a0<a href=\"https:\/\/checkmarx.com\/blog\/exploitable-path-how-to-solve-a-static-analysis-nightmare\/\">exploitable path analysis<\/a>) and to contextually recognize which malicious code is actually being called at runtime (sometimes called\u00a0<a href=\"https:\/\/checkmarx.com\/blog\/unveiling-the-power-of-cloud-insights\/\">cloud insights<\/a>).<\/p>\n<h2 id=\"h.9qs9stczwcsn\" class=\"article-anchor\">Checkmarx One Offers a Leading\u00a0Malicious Package Protection\u00a0Solution as Part of Wider Application Security<\/h2>\n<p>At Checkmarx,\u00a0malicious code security\u00a0is a crucial element of our application security platform, a core tenet of our\u00a0<a href=\"https:\/\/checkmarx.com\/cxsca-open-source-scanning\/\">Software Composition Analysis (SCA)<\/a> and <a href=\"https:\/\/checkmarx.com\/product\/container-security\/\">Container Security<\/a>\u00a0capabilities, and a differentiated capability in its own right to help detect malicious packages as part of wider application security best practices.<\/p>\n<p>To date, our multi-layered package analysis methodologies have identified more than 385,000 malicious packages and counting\u00a0\u2013\u00a0using a combination of advanced scanning technologies and the expertise of our security research team.<\/p>\n<p>Checkmarx One\u2019s Malicious Package Protection module detects malicious packages wherever they appear, whether it\u2019s in manifest files, in binaries, or in containers. We use transitive dependency scanning in malicious package detection, which means even when a malicious package is\u00a0a dependency of a dependency, it will show up in scan results.<\/p>\n<p>Through an integration with Sysdig, we incorporate runtime data to help take detection further and reveal the real-world exploitability of malicious packages. This allows for intelligent prioritization and remediation based on actual runtime usage, rather than channeling resources to where any malicious packages are present in an application, even where they are not in use and the risk level is lower.<\/p>\n<p>Checkmarx also generates smart reliability metrics, rating the trustworthiness of each open-source package that is referenced in applications, using details such as legitimacy, behavioral integrity, and the reputation of the specific contributor. As a customer, you can define your own specific policies which take immediate effect when any malicious packages are detected. According to your business context you can have the system automatically send an alert to the appropriate stakeholders, prevent pull requests that include this package, or break a build entirely until the issue is remediated.<\/p>\n<p>Looking to reduce the risk of malicious code in your applications, and empower developers to securely move with speed and agility? Learn more about malicious package protection by\u00a0<a href=\"https:\/\/checkmarx.com\/request-a-demo\/\">requesting a demo.<\/a><\/p>\n\n<section class=\"section-block-info light-theme\">\n    <div class=\"main-wrapper block-info__wrapper\">\n        <div class=\"block-info center\">\n\t\t\t\n\t\t\t<h2 class=\"section-title article-anchor\" id=\"article-anchor-2\">Who Needs Software Supply Chain Security?<\/h2>\t\t\t<p class=\"section-description\">Protect your software supply chain with industry-leading application security that covers your source code, open-source components, and more<\/p>\n\t\t\t<div class=\"actions\">\n\t\t\t\t        <a href=\"https:\/\/checkmarx.com\/solutions\/software-supply-chain-security\/\" class=\"btn btn-2 btn-bg white demo\">Dicsover SSCS Solution <\/a>\n        \t\t\t\t\t\t\t<\/div>\n        <\/div>\n    <\/div>\n<\/section>","protected":false},"author":64,"featured_media":97213,"parent":0,"menu_order":0,"template":"","meta":{"_acf_changed":true,"footnotes":""},"learn-cat":[850],"class_list":["post-97100","learn","type-learn","status-publish","has-post-thumbnail","hentry","learn-cat-supply-chain-security"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.1.1 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>Malicious Code: How to Secure Your Software Against It<\/title>\n<meta name=\"description\" content=\"Learn how to secure your applications against malicious code as part of your security strategy, with Checkmarx One &gt;&gt;\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Malicious Code: How to Secure Your Software Against It\" \/>\n<meta property=\"og:description\" content=\"Learn how to secure your applications against malicious code as part of your security strategy, with Checkmarx One &gt;&gt;\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:modified_time\" content=\"2024-11-06T08:49:44+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code-1024x585.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"585\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:label1\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data1\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\"},\"author\":{\"name\":\"Renny Shen\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/5bddd3c01049b28454b92ab14dabad27\"},\"headline\":\"How to Secure Your Software Against Malicious Code\",\"datePublished\":\"2024-08-06T06:14:13+00:00\",\"dateModified\":\"2024-11-06T08:49:44+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\"},\"wordCount\":1037,\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png\",\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\",\"url\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\",\"name\":\"Malicious Code: How to Secure Your Software Against It\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png\",\"datePublished\":\"2024-08-06T06:14:13+00:00\",\"dateModified\":\"2024-11-06T08:49:44+00:00\",\"description\":\"Learn how to secure your applications against malicious code as part of your security strategy, with Checkmarx One >>\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png\",\"width\":1792,\"height\":1024,\"caption\":\"SCA hero image\"},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/5bddd3c01049b28454b92ab14dabad27\",\"name\":\"Renny Shen\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_64.jpg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_64.jpg\",\"caption\":\"Renny Shen\"},\"url\":\"https:\/\/checkmarx.com\/author\/rennyshen\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Malicious Code: How to Secure Your Software Against It","description":"Learn how to secure your applications against malicious code as part of your security strategy, with Checkmarx One >>","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/","og_locale":"en_US","og_type":"article","og_title":"Malicious Code: How to Secure Your Software Against It","og_description":"Learn how to secure your applications against malicious code as part of your security strategy, with Checkmarx One >>","og_url":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_modified_time":"2024-11-06T08:49:44+00:00","og_image":[{"width":1024,"height":585,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code-1024x585.png","type":"image\/png"}],"twitter_card":"summary_large_image","twitter_site":"@checkmarx","twitter_misc":{"Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#article","isPartOf":{"@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/"},"author":{"name":"Renny Shen","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/5bddd3c01049b28454b92ab14dabad27"},"headline":"How to Secure Your Software Against Malicious Code","datePublished":"2024-08-06T06:14:13+00:00","dateModified":"2024-11-06T08:49:44+00:00","mainEntityOfPage":{"@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/"},"wordCount":1037,"publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"image":{"@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png","inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/","url":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/","name":"Malicious Code: How to Secure Your Software Against It","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png","datePublished":"2024-08-06T06:14:13+00:00","dateModified":"2024-11-06T08:49:44+00:00","description":"Learn how to secure your applications against malicious code as part of your security strategy, with Checkmarx One >>","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/learn\/supply-chain-security\/how-to-secure-software-against-malicious-code\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/08\/How-to-Secure-Your-Software-Against-Malicious-Code.png","width":1792,"height":1024,"caption":"SCA hero image"},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]},{"@type":"Person","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/5bddd3c01049b28454b92ab14dabad27","name":"Renny Shen","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_64.jpg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_64.jpg","caption":"Renny Shen"},"url":"https:\/\/checkmarx.com\/author\/rennyshen\/"}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn\/97100","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/learn"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/64"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn\/97100\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/97213"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=97100"}],"wp:term":[{"taxonomy":"learn-cat","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/learn-cat?post=97100"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}