A recent npm survey revealed that 77 percent of developers were concerned about the quality and security of the open…
Standing as the "fuel" powering the customer-driven platform revolution, application programming interfaces (APIs) are the new “it thing” amongst operating…
We just wrapped up our fifth annual DevSecOps Days @ RSA Conference 2019, featuring an exceptional lineup of speakers and…
There’s a lot of focus these days on DevSecOps as part of an effort to fix what’s generally acknowledged as…
A survey of 5,558 IT professionals published today by Sonatype in collaboration with CloudBees, Carnegie Mellon’s Software Engineering Institute, Signal…
I have known of Jeff Williams in the security industry for more than several years. He is a well-respected thought…
A secure DevOps is highly beneficial for organizations. However, a secure DevOps environment shouldn’t be the end goal. When it…
There are really only two repositories of any scale for software components today: the Nexus repo managed by Sonatype and…
Making consistent progress within any DevSecOps initiative often can be an overwhelming undertaking. Developers tend to outnumber operations dramatically, with…
Software development has evolved, but security testing has not. That has to change In the bad, old days—which, sadly, many…