Tag: devsecops
Leveraging eBPF for DevSecOps
The applications for enhancing security observability with eBPF are vast, and it's increasingly valuable for DevSecOps use cases ...
appCD Launches Platform to Securely Provision Cloud Infrastructure
appCD's platform analyzes an application about to be deployed and automatically generates the code to provision the required infrastructure ...
Permiso Makes Open Source Tool to Identify Cloud Threats Available
Permiso today launched an open source tool dubbed CloudGrappler that surfaces indicators of compromise in cloud computing environments ...
AISecOps: Expanding DevSecOps to Secure AI and ML
AISecOps, the application of DevSecOps principles to AI/ML and generative AI, means integrating security into models' life cycles ...
Survey Sees Limited DevSecOps Progress Being Made as Vulnerabilities Mount
A recent survey found that, on average, organizations have 55.5 security vulnerabilities each day in their remediation queue, with at least one critical ...
Securing the DevOps Pipeline: Tools and Best Practices
Because of the critical nature of the DevOps pipeline, security is becoming a top priority. Here's how to integrate DevSecOps ...
Forget Shift Left: Why ‘No Shift’ is the Future of Software Innovation
A no shift strategy argues for developing and testing directly in production, bypassing the traditional dev-to-production delivery pipeline ...
Why DevOps is Key to Software Supply Chain Security
Organizations can maintain their DevOps momentum while protecting the software supply chain by shifting security left ...
Techstrong Research: Combatting CI/CD Security Anti-Patterns
Techstrong Research finds the imperative to secure the software supply chain and CI/CD pipelines is undeniable and urgent ...
Squaring the Circle: How to Make Public APIs Private
Many API attacks are effectively zero-day, novel attacks that exploit recent and unique changes to specific APIs. Here's how to stop them ...
Legit Security Adds Sensors to Detect Usage of Gen AI Tools to Write Code
Legit Security updated its ASPM platform with the ability to detect when developers use generative AI tools to write code ...
Survey: Cyberattacks Aimed at Software Supply Chains are Pervasive
A survey found the vast majority of respondents work for organizations that experienced a software supply chain incident in the past 12 months ...