By clicking "Accept", you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. View our Privacy Policy for more information.

PreferencesRejectAccept
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

Featured Posts

From Breach to Blocked: How a HeroDevs Engineer Stopped a GitHub Hijack in 6 Hours
Security
Jul 29, 2025
From Breach to Blocked: How a HeroDevs Engineer Stopped a GitHub Hijack in 6 Hours
One malicious NPM package. Zero CVEs. Caught by a human—not a tool.
HeroDevs Announces $125 Million Strategic Growth Investment from PSG
Press Release
Jul 24, 2025
HeroDevs Announces $125 Million Strategic Growth Investment from PSG
The investment, one of the largest in Utah this year, will help further HeroDevs’ commitment to securing legacy software applications, ensuring enterprise technology infrastructure remains compliant and protected
The Python + NumPy Conundrum: When Your Dependencies Don’t Agree
Products
Jul 10, 2025
The Python + NumPy Conundrum: When Your Dependencies Don’t Agree
Why upgrading Python or NumPy breaks everything—and how to keep your stack stable anyway

All Posts

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Security
Press Release
Products
Thought Leadership
Security
Jul 29, 2025
From Breach to Blocked: How a HeroDevs Engineer Stopped a GitHub Hijack in 6 Hours
One malicious NPM package. Zero CVEs. Caught by a human—not a tool.
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
from-breach-to-blocked-how-a-herodevs-engineer-stopped-a-github-hijack-in-6-hours
Press Release
Jul 24, 2025
HeroDevs Announces $125 Million Strategic Growth Investment from PSG
The investment, one of the largest in Utah this year, will help further HeroDevs’ commitment to securing legacy software applications, ensuring enterprise technology infrastructure remains compliant and protected
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
herodevs-announces-125-million-strategic-growth-investment-from-psg
Thought Leadership
Jul 17, 2025
What Google Got Right (and Wrong) in the AngularJS to Angular Migration
How Angular’s transition from JS to modern TypeScript sparked confusion, competition, and crucial lessons for the future of open source support.
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
what-google-got-right-and-wrong-in-the-angularjs-to-angular-migration
Thought Leadership
Jul 16, 2025
Still Using Lodash 3.x? Here’s What You’re Risking.
Why millions of downloads don’t mean you’re safe—and what to do if your app still depends on Lodash 3.
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
still-using-lodash-3-x-heres-what-youre-risking
Thought Leadership
Jul 15, 2025
CVE Scoring Doesn't Tell the Whole Story: The Art of Understanding Vulnerability Context
Why “Low Severity” CVEs Can Still Wreck Your Systems—and What to Do Instead
Parin Shah
Parin Shah
Share this post via:
herodevs.com/blog-posts/
cve-scoring-doesnt-tell-the-whole-story-the-art-of-understanding-vulnerability-context
Products
Jul 10, 2025
The Python + NumPy Conundrum: When Your Dependencies Don’t Agree
Why upgrading Python or NumPy breaks everything—and how to keep your stack stable anyway
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
the-python-numpy-conundrum-when-your-dependencies-dont-agree
Thought Leadership
Jul 9, 2025
Puppies, Conversations, and Real Talk on OSS Security at Open Source Summit America
What record-shaped frisbees, dog chats, and tough EOL questions taught me at Open Source Summit America
Taylor Corbett
Taylor Corbett
Share this post via:
herodevs.com/blog-posts/
puppies-conversations-and-real-talk-on-oss-security-at-open-source-summit-america
Products
Jul 7, 2025
The Most Downloaded JS Library You Forgot to Upgrade
Lodash gets over 66 million downloads a week—but most teams have no idea it’s effectively end-of-life.
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
the-most-downloaded-js-library-you-forgot-to-upgrade
Products
Jul 3, 2025
Extending the Life of Mission-Critical NumPy Applications with Never-Ending Support for NumPy
Don’t Let NumPy 1.x Break Your Stack—Get Never-Ending Support
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
extending-the-life-of-mission-critical-numpy-applications
Products
Jul 2, 2025
Never-Ending Support Now Covers Spring Boot 3.2 and 3.4
Secure Spring Boot 3.2 & 3.4 Beyond End-of-Life with Never-Ending Support
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
never-ending-support-now-covers-spring-boot-3-2-and-3-4
Products
Jul 1, 2025
Extending the Life of Mission-Critical PostgreSQL Databases with Never-Ending Support
Still running PostgreSQL 9.6–13? HeroDevs Never-Ending Support keeps your data secure, compliant, and running without forced migrations.
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
extending-the-life-of-mission-critical-postgresql-databases-with-never-ending-support
Products
Jun 30, 2025
Spring 6.1 Is Now Officially End-of-Life — What That Means for You
Spring 6.1 is now end-of-life. Here’s what that means—and how to stay secure without rewriting your stack
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
spring-6-1-is-now-officially-end-of-life----what-that-means-for-you
Products
Jun 27, 2025
Django Never-Ending Support: Security & Compliance for Django 3.2
Still running legacy Django in production? HeroDevs delivers enterprise-grade security, compliance, and stability—no upgrade required.
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
django-never-ending-support-security-compliance-for-django-3-2
Thought Leadership
Jun 24, 2025
Sunsetting a Framework: Lessons from AngularJS
When Google replaced AngularJS with a full rewrite, 2 million developers were left behind. Here’s what went wrong—and what future framework sunsets should do differently.
Wendy Hurst
Wendy Hurst
Share this post via:
herodevs.com/blog-posts/
sunsetting-a-framework-lessons-from-angularjs
Press Release
Jun 23, 2025
HeroDevs Launches $20 Million Sustainability Fund for Open Source Creators to Secure End-of-life Software
The Open Source Sustainability Fund will fuel continued best practices for deprecated open source software and reinforces company’s commitment to maintainers managing critical vulnerabilities
HeroDevs
HeroDevs
Share this post via:
herodevs.com/blog-posts/
herodevs-launches-20-million-sustainability-fund-for-open-source-creators-to-secure-end-of-life-software