Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Social – X

From Phishing to Vishing: Why DevSecOps Must Rethink Communication Security

From Phishing to Vishing: Why DevSecOps Must Rethink Communication Security

| | AI security, CI/CD, devsecops, social engineering, Vishing, zero-trust
Key Takeaways: Vishing is the new frontline threat: Attackers are shifting from emails to phone-based scams, using AI and social engineering to bypass traditional security controls. DevSecOps must expand its scope: Securing ...
Google, Gemini, DevOps, jobs, careers, talent, engineer,

How AI Is Transforming DevOps and Cloud Engineering

| | ai, autonomous infrastructure, cloud, cloud-native platforms, devops
While AI is often associated with chatbots or generative models, one of its most significant impacts is happening behind the scenes — within DevOps and cloud engineering ...
Your Foundation Model is a Service. Operate it Like One

Your Foundation Model is a Service. Operate it Like One

| | data, devops, Foundation Model, sdlc
The FM life cycle is just the SDLC with more math and less mercy at 3 a.m. You have survived canary deployments that took out 40% of prod instead of 5%. You ...
IBM, modernization

Modernization Is Not Migration

| | CI/CD, cloud infrastructure, devops, modernization
Modernization worked only if the platform became easier to change, easier to understand and safer to run under pressure. That is not a philosophical position — it is a measurable one ...
Google, code signing, trust, CodeRabbit, code, GenAI, Quali, Torque, code, Symbiotic, application developers, Zencoder, code, operations, code, commit, developer, mainframe, code, GenAI; code review efficiency cloud development

Why CI-Based Security is Too Late for Modern Node.js Projects

| | ci, devops, devsecops, node.js
Most Node.js teams rely on CI pipelines to tell them whether their dependencies are secure. By the time that feedback arrives, however, the most important decisions have already been made ...
performance testing, CI/CD, building, Argo CD, pipeline, misconfigured, CI/CD, pipelines, pipeline, identity, zero trust, CI/CD, pipelines, AI/ML, database, DevOps, pipelines eBPF Harness CI/CD

These are 10 CI/CD Pipeline Mistakes That Slow Down Engineering Teams

| | CI/CD, delivery, devops
Continuous software delivery in the digital age depends on CI/CD pipelines, which enable engineering teams to rapidly develop, test, and deploy code while maintaining high usability and consistency across environments ...
The Bottleneck Isn't Coding Anymore. It's Verification

The Bottleneck Isn’t Coding Anymore. It’s Verification

| | agents, ai, devops, teams, verification strategies
The teams that come out ahead in the next two years won’t be the ones that adopted agents fastest. They’ll be the ones that invested in verification capacity with the same seriousness ...
standardize digital experience

Mastering the Blast Radius, Deployment Without Fear- Progressive Delivery in Modern DevOps

| | blast radius, devops, progressive delivery
‘Progressive delivery’ is the modern evolution of continuous delivery, designed to reduce the blast radius of new features and decouple ‘deployment’ (moving code to production) from ‘release’ (exposing features to users) ...
performance testing, CI/CD, building, Argo CD, pipeline, misconfigured, CI/CD, pipelines, pipeline, identity, zero trust, CI/CD, pipelines, AI/ML, database, DevOps, pipelines eBPF Harness CI/CD

Shift-Left Performance Testing in CI/CD: A Practical LoadRunner Framework

| | CI/CD, devops, shift left
CI/CD pipelines speed up software delivery, but performance testing is often delayed, resulting in late feedback and costly fixes. Many teams run tests earlier but fail to enforce performance as a deployment ...
Akrites: The Latest Attempt to Protect Open-Source From AI Attacks Has Arrived

Akrites: The Latest Attempt to Protect Open-Source From AI Attacks Has Arrived

| | ai, Akrites, Amazon Web Services, Anthropic, Chainguard, cisco, citi, devops, Endor Labs, Ericsson, github, google, ibm, JPMorganChase, microsoft, NVIDIA, OpenAI, RapidFort, red hat, The Linux Foundation
Akrites, a new Linux Foundation initiative backed by many of the world’s largest tech and financial firms, is the industry’s latest attempt to get ahead of AI‑accelerated software supply chain risks by ...
AI Is Exposing a Growing Blind Spot in Open Source Security

AI Is Exposing a Growing Blind Spot in Open Source Security

| | ai, application security, open source, software development, Software Supply Chain, technical debt
With AI, teams across organizations are now building internal applications faster than ever, often pulling in open source libraries and frameworks without much thought about long-term support, lifecycle management, or security ownership ...
Qodo Extends Reach and Scope of AI Code Review Platform

Qodo Extends Reach and Scope of AI Code Review Platform

| | agentic AI, ai, AI Governance, code review, devops, PR, Qodo
Qodo this week extended its platform for managing code quality and governance to enable an artificial intelligence (AI) agent to review code spanning multiple repositories. Additionally, version 2.8 of the Qodo platform ...
Show More