This talk presents an overview of two projects at Oracle Labs Australia and highlights how they leverage technologies from the PL community to improve application security. First stop is project RASPunzel that uses program synthesis to learn and generate runtime protections against a wide array of vulnerabilities. Next, we have project Macaron that encodes and checks software supply chain security policies using logic-based programming. Macaron is now open-source.