Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

IT Security

MLOps, JFrog, Venafi MLOps businesses ML machine learning MLOps modelsGreat Resignation machine learning Eggplant testing

Venafi Adds Ability to Prevent Unauthorized Code From Running

| | automation, code security, machine identity, runtime protection, Venafi
Venafi added an ability to prevent unauthorized code from running in IT environments that make use of its machine identity management platform ...
AI, AI-powered, DevSecOps, zero-trust, Mobb Checkmarx DevSecOps security

Mobb Extends DevSecOps Reach of Tool to Generate Patches

| | devsecops, Mobb, patch management, secure code, security, workflow
Mobb added an ability to instantly surface patches for vulnerabilities at the time when code is being committed during a DevSecOps workflow ...
Legit Security syslogs HashiCorp Checkmarx Synopsys Cycode CodeLogic scanning Contrast Security secrets scan dynamic

Legit Security Applies AI to Detect Vulnerable Application Secrets

| | ai, application security, artificial intelligence, code scanning, Legit Security, secrets management
Legit Security expanded the scope of its ASPM platform to make use of AI to discover vulnerable application secrets more accurately ...
CISA, secure by design, ReversingLabs, open-source, AI, cybersecurity, tooling, CISA Security Scribe ReversingLabs software supply chain cybersecurity - software supply chain security - risks - cyberattacks - Log4J - vulnerabilities

From Reaction to Robots: Riding the AI Wave in 2024

| | ai, artificial intelligence, coding, developer, regulations, secure-by-design, software
Investment in security-aware developers and collaboration between them and AppSec teams should be a driving force in 2024 ...
AI, AI-powered, DevSecOps, zero-trust, Mobb Checkmarx DevSecOps security

Checkmarx Report Details Havoc Caused by ‘Everything’ Package on NPM Registry

| | Checkmarx, denial of service, dependencies, NPM, Software Supply Chain Security
A Checkmarx report details an 'Everything' package distributed via the NPM registry that cripples any machine used to download it ...
Sonar Rezilion DevOps radar

Sonar Adds Secrets Detection to Code Analysis Portfolio

| | code, IAM, Secrets, secrets management, Sonar, vulnerability
Sonar has added a secrets detection capability to its portfolio of tools for analyzing code and DevOps workflows ...
vulnerability shared responsibility One Identity

Vulnerability Management for DevOps Teams: A Practical Guide

| | devsecops, Secure Software, software security, vulnerability, vulnerability management
The goal of vulnerability management is to close the gap between discovery and resolution, thereby minimizing the window of opportunity for potential cyberattacks ...
intelligent, applications, Synopsys supply chain intelligent application vulnerability DevOps open source software Red Hat Dynatrace automation analytics AI Red Hat

Synopsys Report Sees Steady Application Security Gains

| | devsecops, security automation, Software Supply Chain, supply chain, Synopsys
An analysis of the security automation practices of 130 organizations published by Synopsys suggests significant progress toward securing software supply chains ...
OpenSSF warns of Open Source Social Engineering Threats

How Encryption Innovation Will Power Cloud Privacy for Developers in 2024

| | devsecops, encryption, fully homomorphic encryption, security, software security
With new encryption technologies rapidly advancing, developers can ensure their applications are secure ...
DAST, security, Veracode DAST platform engineering, DevOps, IT

Veracode Extends DAST Reach Left Toward Developers

| | app testing, continuous testing, DAST, Dynamic Application Security Testing, Veracode
Veracode launched a version of its automated DAST tool, dubbed DAST Essentials, that is embedded within an IDE ...
New Relic outage costs SREs, SRE

Three Strategies for Reducing MTTD and MTTR as Outage Costs Spiral

| | apm, devops, metrics, MTTD, mttr, New Relic, observability, outages
In a business environment where most interactions with customers, suppliers and business partners are conducted digitally, downtime has become a problem and an existential threat ...
Moderne, application, code, Diffblue, DARPA, code schema Lineaje devOps Rust JFrog Project Pyrsia OpenRewrite Micronaut ModernePython

Lineaje Allies With Persistent Systems on Open Source Software Remediation Service

| | Lineaje, open source, Persistent Systems, remediation, SBoM, Software Supply Chain, vulnerabilities
Lineaje and Persistent Systems are providing a managed service for remediating open source vulnerabilities that leverages AI technologies ...
Show More