Spotlight

Five Great DevOps Job Opportunities

Mike Vizard | August 11, 2025 | careers, devops, jobs, opportunities

Our DevOps jobs report this week highlights industry roles at Sharetec, CodeRabbit , Block, Inc., Gerber Life Insurance and Optisources ...

code fixes, AI, code, ArmorCode, code generation, AI, Pythagora, tools, AI coding tools, code, AI tools, Google generative AI, tools, software development, one-off tools DevSecOps Failure

ArmorCode Extends AI Tool to Generate Code Fixes for Specific Runtime Environments

Mike Vizard | August 7, 2025 | AI tools, BlackHatUSA2025, devops

ArmorCode, this week at the Black Hat USA 2025 conference, revealed it has extended its Anya artificial intelligence (AI) tool to generate suggested code fixes that are customized for specific runtime environments ...

agents, onboarding, shadow ai, workflows,

Black Duck Software Extends AI Reach to IDE to Better Secure Code

Mike Vizard | August 7, 2025 | AI tools, BlackHatUSA2025, devops

Black Duck Software, this week at the Black Hat USA 2025 conference, revealed it has now integrated its artificial intelligence (AI) tool for securing software, dubbed Black Duck Assist, into the company’s ...

ControlMonkey, Black duck, survey, Checkmarx, vulnerable code,

Survey Surfaces Multiple Persistent DevSecOps Challenges

Mike Vizard | July 29, 2025 | appsec, devops, survey

A survey of leaders based in North America finds 62% work for organizations that knowingly release insecure code to meet delivery deadlines ...

AI, code, Amazon, amazon Q, secure devops, AI, AI shift left Jit Rezilion DevSecOps Shifting Left and Static Code Analysis with Perforce

When AI Assistants Turn Against You: The Amazon Q Security Wake-Up Call

Tom Smith | July 29, 2025 | ai, Amazon, code, devsecops

Amazon Q coding assistant was compromised with malicious prompts designed to wipe AWS accounts. What this near-miss teaches us about AI security ...

DevOps, jobs, careers, talent, engineer,

Five Great DevOps Job Opportunities

Mike Vizard | June 30, 2025 | careers, devops, job market, jobs

DevOps.com is now providing a weekly DevOps jobs report through which opportunities for DevOps professionals will be highlighted as part of an effort to better serve our audience. Our goal in these ...

platform , engineering, software, AI, platform engineering, CoE, AI, IT Ops production environment

“DevOps is Dead? Long Live DevOps-Powered Platforms”

Alan Shimel | June 28, 2025 | ai, devops, platform engineering, PlatformCon 2025

If PlatformCon NYC proved anything, it’s that the DevOps ethos of collaboration, automation and continuous improvement now has a bigger, better stage ...

supply chain, software, Checkmarx, data, Endor, SCA, supply chain, security, workflows, supply chain, software, supply chain security, appsec, polyfill, software, supply chains, DevOps, DevSecOps, Google supply chain

Checkmarx Surfaces Malicious Effort to Compromise Software Supply Chains

Mike Vizard | May 29, 2025 | data, devops, malware, Software Supply Chain, typo-squatting

Checkmarx, this week, reported it has discovered malicious software packages that, in addition to injecting malware capable of bypassing endpoint security to exfiltrate data, also provide persistent remote access and control of ...

LaunchDarkly Acquires Highlight to Bring Observability to Application Release Management

Mike Vizard | April 30, 2025 | devops, feature flags, monitoring, observability

LaunchDarkly is looking to bring observability to feature flag management by acquiring Highlight, a provider of an open-source application monitoring tool ...

Legit, Sonatype OpenZiti open source software Commvault

Legit Security Extends AI Reach of ASPM Platform

Mike Vizard | April 29, 2025 | ai, devsecops, RSAC 2025, vulnerabilities

Legit Security at the 2025 RSA Conference today extended the reach of its application security posture management (ASPM) platform that leverages artificial intelligence (AI) to identify vulnerabilities and other weaknesses to now ...

Qwiet, ai, Lineaje, AI, agents, Cycode, SAST, analysis, Black Duck, open-source, coding, DevSecOps, OpenText, Process, DevSecOps, ASPM, Cycode SecOps GitLab Quali SigStore OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security Vulnerabilities

Lineaje Leverages AI Agents to Secure Open Source Packages and Images

Mike Vizard | April 29, 2025 | devsecops, open source, vulnerabilities

Lineaje has added artificial intelligence (AI) agents that leverage multiple types of code scanners to ensure the open-source software packages and artifacts being used by application developers are truly secure ...