Tag: devsecops
JFrog Extends Alliance With NVIDIA to Secure AI Software Supply Chain
JFrog and NVIDIA today announced they have expanded the integrations between their software development platforms to now include the Enterprise AI Factory, a set of frameworks and blueprints for building artificial intelligence ...
DevEx Got You This Far: What’s Next for True DevSecOps Maturity?
The journey toward integrating security into the fast-paced world of DevOps has seen significant strides, largely thanks to a much-needed focus on the developer experience (DevEx). Collectively, the AppSec community and industry ...
Code Signing in the DevOps Era: Silver Bullet or Security Theater?
Aditya Gupta | | Anomaly Detection in DevOps, CI/CD, code signing, devsecops, key management, security automation, Software Bill of Materials (SBOM), software securityIn the race for speed and automation, code signing is treated as a silver bullet when it should be just one part of a deeper trust strategy. ...
DevOps: More Than a Buzzword—A Mindset of Continuous Evolution
In recent years, the term DevOps has become one of the most talked-about buzzwords in the technology world. You’ll hear it in boardroom discussions, IT conferences, job postings, and even startup meetups ...
Futurum Group Survey Surfaces DevSecOps Progress on Multiple Fronts
A survey of 110 security leaders finds all are investing in software supply chain security, with application security posture management (ASPM) and DevSecOps automation and orchestration topping the priority list, followed closely ...
Continuous Compliance for Cloud-Native CI/CD Pipelines
Manvitha Potluri | | Audit-ready pipelines, CI/CD, cloud-native, continuous compliance, devsecops, Infrastructure as Code (IaC), policy as code, Regulatory automationHow DevOps teams can embed auditability without sacrificing delivery speed ...
GitLab Extends Scope and Reach of Core CI/CD Platform
GitLab Inc. has updated its core continuous integration/continuous delivery (CI/CD) platform to natively provide more artificial intelligence (AI) capabilities, along with built-in software artifact management capabilities and more robust security tools ...
Harmonizing AI-Driven DevOps: Building Secure, Self-Healing Pipelines With AWS Bedrock and SageMaker
Dinesh Besiahgari | | AI-Driven DevOps, Amazon SageMaker, AWS Bedrock, CI/CD Automation, devsecops, Self-Healing PipelinesThe combination of SageMaker and Bedrock enables DevOps teams to develop secure self-healing pipelines through AI harmonization, which transforms software delivery processes ...
ArmorCode Makes Anya AI Agent Generally Available
ArmorCode at the 2025 RSA Conference this week made generally available Anya, an artificial intelligence (AI) agent added to its application security posture management (ASPM) platform that has specifically been trained to ...
Intelligent Continuous Security From the Platform Outward
In the end, ICS is not a tool — it’s a philosophy of secure software delivery. When it begins with the platform, everything else aligns: Speed, safety and scale ...
Legit Security Extends AI Reach of ASPM Platform
Legit Security at the 2025 RSA Conference today extended the reach of its application security posture management (ASPM) platform that leverages artificial intelligence (AI) to identify vulnerabilities and other weaknesses to now ...
Lineaje Leverages AI Agents to Secure Open Source Packages and Images
Lineaje has added artificial intelligence (AI) agents that leverage multiple types of code scanners to ensure the open-source software packages and artifacts being used by application developers are truly secure ...
