Git Guardian have produced a great list and cheatsheet of the best ways to store and manage secrets such as API keys, including not posting them in slack and Secret-as-a-Service solutions.
Know your Elastic Beanstalk from your Snowball? Yeah, me neither. Thankfully Joshua Thijssen has put together an extremely useful list of one line descriptions of all the different Amazon AWS products.
Paul Boyd published a great post on the differences between password storage methods.Key Derivation Functions > Salted Hashes > Hashes > Encyption > Plain Text.
Deepak Gupta provides a very useful list of thirteen security tips for front-end developers, including disabling iframe embedding, using noreferrer anchor tags, and compartmentalising your application to reduce the threat surface area.
Microsoft has launched a static web apps product that allows for continuous deployment of a static web front end with dynamic serverless API powered backends. The apps can be automatically updated using a VS code extension that integrates with GitHub actions for continous deployment.
Google have partnered with O'Reilly to publish the Building Secure & Reliable Systems book, which looks to security best practices from Google SRE teams. The book is available to download for free.