Tag: devsecops

software delivery, CI/CD, generative AI, AWS, SageMaker, pipelines, CI/CD, ReversingLabs DevOps jobs AIOps

Harmonizing AI-Driven DevOps: Building Secure, Self-Healing Pipelines With AWS Bedrock and SageMaker

Dinesh Besiahgari | May 2, 2025 | AI-Driven DevOps, Amazon SageMaker, AWS Bedrock, CI/CD Automation, devsecops, Self-Healing Pipelines

The combination of SageMaker and Bedrock enables DevOps teams to develop secure self-healing pipelines through AI harmonization, which transforms software delivery processes ...

ArmorCode Makes Anya AI Agent Generally Available

Mike Vizard | May 2, 2025 | agentic AI, AI agent, ASPM, devsecops, RSAC 2025

ArmorCode at the 2025 RSA Conference this week made generally available Anya, an artificial intelligence (AI) agent added to its application security posture management (ASPM) platform that has specifically been trained to ...

Intelligent Continuous Security From the Platform Outward

Marc Hornbeek | April 30, 2025 | devsecops, Intelligent Continuous Security, PlatformSec, secops

In the end, ICS is not a tool — it’s a philosophy of secure software delivery. When it begins with the platform, everything else aligns: Speed, safety and scale ...

Legit, Sonatype OpenZiti open source software Commvault

Legit Security Extends AI Reach of ASPM Platform

Mike Vizard | April 29, 2025 | ai, devsecops, RSAC 2025, vulnerabilities

Legit Security at the 2025 RSA Conference today extended the reach of its application security posture management (ASPM) platform that leverages artificial intelligence (AI) to identify vulnerabilities and other weaknesses to now ...

Lineaje, AI, agents, Cycode, SAST, analysis, Black Duck, open-source, coding, DevSecOps, OpenText, Process, DevSecOps, ASPM, Cycode SecOps GitLab Quali SigStore OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security Vulnerabilities

Lineaje Leverages AI Agents to Secure Open Source Packages and Images

Mike Vizard | April 29, 2025 | devsecops, open source, vulnerabilities

Lineaje has added artificial intelligence (AI) agents that leverage multiple types of code scanners to ensure the open-source software packages and artifacts being used by application developers are truly secure ...

Minimus Unfurls Service for Accessing Secure Software Artifacts

Mike Vizard | April 28, 2025 | devsecops, Minimus, security, software artifacts

Minimus today at the 2025 RSA Conference launched a managed service through which it ensures application development teams are provided access to a secure set of minimal container images and virtual machines ...

services, devops, drift, AI, developers, generative ai, software, AI-native, development, DevOps,

Cycode Adds AI Agent Teammates to Secure Software Supply Chains

Mike Vizard | April 24, 2025 | AI agents, devops, devsecops

Cycode, this week, added multiple artificial intelligence (AI) agents to its application security posture management (ASPM) capable of monitoring code and offering remediation suggestions. In addition, the company is adding an ability ...

Veracode Extends Scope and Reach of DevSecOps Portfolio

Mike Vizard | April 22, 2025 | devsecops, kubernetes, risk management, Telemetry data

Veracode today updated its risk management tool to provide integration with Kubernetes runtime environments, increased integration with code repositories to make it simpler to identify the origin of vulnerabilities and, available shortly, ...

CISA, secure by design, ReversingLabs, open-source, AI, cybersecurity, tooling, CISA Security Scribe ReversingLabs software supply chain cybersecurity - software supply chain security - risks - cyberattacks - Log4J - vulnerabilities

Report: Commercial Software Just as Vulnerable as Open Source

Mike Vizard | April 15, 2025 | ai, devsecops, open source, Secrets, Software Supply Chains, vulnerabilities

An analysis published by ReversingLabs, a provider of tools for securing application development environments, suggests that commercial software used in software supply chains is just as vulnerable as open-source code ...

application, vulnerabilities, devsecops, developers, appsec, tool, appsec, Bionic modernization DevSecOps AppSec Cortex materialized view SIEM

Report: Bulk of Application Vulnerabilities Don’t Require Immediate Attention

Mike Vizard | April 8, 2025 | appsec, cybercriminals, devsecops, vulnerabilities

An analysis of more than 101 million application security alerts conducted by OX Security, a provider of an application security posture management (ASPM) platform, finds only 2% to 5% require immediate action, ...

DevSecOps, security, Gitlab, CI/CD, ArmorCode, AI, Veracode, risk, devsecops, AI, security, developers, organizations, code, SBOMs, DevSecOps

Securing the Future: DevSecOps in the Age of Artificial Intelligence

Sachin Suryawanshi | April 4, 2025 | ai, devops, devsecops

Why DevSecOps is a critical discipline in the AI era, the benefits and challenges of integrating AI into DevSecOps pipelines and why it provides a framework for successfully adopting these emerging technologies. ...

code data, agentic, JFrog, security, devsecops, Digma, code, Go, code, kernel, eBPF, Veracode GitKraken JFrog GitGuardian organizations, quality fear unknown software app Rust Contrast Security Adds API Support to Application Security Platform

JFrog Survey Surfaces Limited DevSecOps Gains

Mike Vizard | April 1, 2025 | devops, devsecops, security, supply chain security

A global survey of 1,402 application developers, cybersecurity and IT operations professionals finds 71% work for organizations that, despite any potential vulnerabilities, still allow developers to download packages directly from the internet ...