Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Editorial Calendar

Armorcode, AI, veracode, risk, devsecops, Legit security, vulnerability, Harness,Traceable, DevSecOps, SDLC, Tidelift, DevSecOps, code, open source, AWS, devsecops, Digital.ai DevSecOps business SDLC Integrating Security in the Development Process with DevSecOps

ArmorCode Makes Anya AI Agent Generally Available

| | agentic AI, AI agent, ASPM, devsecops, RSAC 2025
ArmorCode at the 2025 RSA Conference this week made generally available Anya, an artificial intelligence (AI) agent added to its application security posture management (ASPM) platform that has specifically been trained to ...
Legit, Sonatype OpenZiti open source software Commvault

Legit Security Extends AI Reach of ASPM Platform

| | ai, devsecops, RSAC 2025, vulnerabilities
Legit Security at the 2025 RSA Conference today extended the reach of its application security posture management (ASPM) platform that leverages artificial intelligence (AI) to identify vulnerabilities and other weaknesses to now ...
api, sprawl, Postman, APIs, engineering, API-first, strategy. API, Sideko, APIs, API, security, Sonar, vulnerabilities, API, APIs, developers, development, management, tools, API monetization, stack, platform, APIs API Security Summit -- API security -- cybersecurity - Application Programming Interfaces

Break the Bottleneck of API Sprawl With AI-Powered Automation

| | agents, ai, API, applications, automation, data, developer, development, integration, SaaS
The race to accelerate digital transformation across business units within an organization has led to a rapid surge in APIs, though unfortunately, without a central strategy in place ...
The DevOps Bottleneck: Why IaC Orchestration is the Missing Piece

The DevOps Bottleneck: Why IaC Orchestration is the Missing Piece

| | automation, devops, IaC, security
If you work in DevOps, you’ve heard it a thousand times: “Do more with less.” More automation, more security, more reliability—but with the same (or fewer) people. Meanwhile, your development teams keep ...
scam, developers, freelance, developer, experience, DevEx, development ruby on rails, speed to market, developer happiness, low-code citizen developers development

North Korean Bad Actor’s Fake Job Offer Scam Targets Developers

| | fake job, freelance developers, North Korea
Freelance developers around the world are being targeted by North Korean bad actors posing as job recruiters who as part of the fake application process entice them to run software jobs that ...
code data, agentic, JFrog, security, devsecops, Digma, code, Go, code, kernel, eBPF, Veracode GitKraken JFrog GitGuardian organizations, quality fear unknown software app Rust Contrast Security Adds API Support to Application Security Platform

Typosquat Supply Chain Attack Targets Go Developers

| | GitHub repositories, Golang, malicious code, software supply chain attacks
A backdoor that impersonates a widely used database module in the popular Go programming language can give hackers control of infected systems, according to a senior threat intelligence analyst with developer-focused platform ...
ai-powered, observability, insights, DevSecOps Cisco Chronosphere observability, data collection, Observe Google Splunk ServiceNow Logz.io observability Web3 developers CodeSee Survey Surfaces Slow But Steady DevSecOps Progress

How AI-Based Insights Can Transform Observability

| | ai, AI-based Observability, observability
How AI-powered insights can help transform observability and enable organizations to better comprehend and manage their applications.  ...
GitHub, supply chain, Bazel, CI/CD Mezmo DataOps GitLab GitHub OpsRamp GitOps - DevOps - CI/CD

Fake Stars in GitHub a Growing Security Threat, Analysis Finds

| | GitHub repositories, Repository Security, software supply chain risks, stargazing
There was a surge of inauthentic stars on code repositories in 2024, ramping up the threat of software supply chain attacks ...
Best of 2024: Jenkins and JenkinsX in 2024

Best of 2024: Jenkins and JenkinsX in 2024

| | Jenkins
This article is a response to “The Future of Jenkins in 2024” article, published late last year. If you’re a software developer, it is practically impossible that you haven't at least heard ...
opportunities, jobs, DevOps, role, opportunities, job, opportunities, goal, DevOps jobs, Nobl9

Best of 2024: DevOps: What’s the End Goal?

| | 4GL, ai, change, devops, philosophy, strategic planning
Don MacVittie asks the existential question: What, exactly, are we trying to achieve through DevOps' integration with AI? ...
RISC-V, java, processor architecture, sustainability, IT, architects architecture

Best of 2024: What is RISC-V and Why Has it Become Important for Java?

| | ARM, devops, hardware, java, Optimization, RISC-V
Arm-based processors, which are increasingly popular, may capture a significant share of the semiconductor market with RISC-V ...
software, LLMs, engineering, Aigment Code, code, CrowdStrike, windows, Microsoft system outage crash software update

Best of 2024: Configuration-as-Code: Trends and Predictions for 2024

| | automation, configuration, Configuration as Code, edge computing, gitops, version control
CaC allows for a version-controlled, reproducible and automated method of managing environments, leading to more consistent and reliable systems ...
Show More