Cloudflare details their commitment to CISA's Secure-by-Design pledge, focusing on eliminating vulnerability classes through prevention rather than patching. They implemented new security measures targeting injection vulnerabilities and secrets in code, resulting in a 79% reduction in secrets and 44% reduction in injection vulnerabilities. The company emphasizes automated security tools, developer training, and secure-by-design principles in their development process.
https://blog.cloudflare.com/cisa-pledge-commitment-reducing-vulnerability/