Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: Secure Software Summit

software ownership SBOM DevOps mainframe

Secure Software Summit: Behold the SBOM

| | SBoM, Secure Software Summit, software security, Software Supply Chain
With supply chain security becoming more of a focus, the SBOM is now viewed as a critical element in shoring up supply chain security. SBOM stands for software bill of materials. At ...
GitOps, trends, GitOps DevSecOps reachability risk ServiceNow

Secure Software Summit: Reachability and Risk for Security Leaders

| | devsecops, risk, secure coding, Secure Software Summit
It is impossible to manage security posture without considering two key factors in any potential vulnerability or security flaw: Reachability and risk. The two factors are related. Reachability defines the degree to ...
chaos engineering

Secure Software Summit: Applying Chaos Engineering to Software Security

| | chaos engineering, Netflix, resilience, Secure Software Summit, SRE
Today’s software systems are, essentially, controlled chaos—and lightly controlled chaos, at that. This makes it exceptionally challenging to model the behavior of those systems. Our systems are quickly becoming larger and larger, ...
zero-trust governance trust

Secure Software Summit: Securing Software With Zero-Trust

| | secure code, Secure Software Summit, Software Supply Chain, zero-trust
With the increase of supply chain attacks on everything from logging software like Log4j to takeovers of important JavaScript packages to compromises of network utility tools like SolarWinds, more and more organizations ...
open source, software, security, open-source, Lineaje, Linux, open source, report, study, Open source code

Secure Software Summit: The State of OSS Supply Chain Security

| | open source, oss, Secure Software Summit, supply chain attacks
The open source software (OSS) supply chain is under attack. As evidenced by the recent Log4Shell vulnerability, the OSS supply chain is increasingly a focus for attackers seeking to exploit weak links ...
Lineaje, AI, agents, Cycode, SAST, analysis, Black Duck, open-source, coding, DevSecOps, OpenText, Process, DevSecOps, ASPM, Cycode SecOps GitLab Quali SigStore OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security Vulnerabilities

Improving Software Security in 2022

| | developer skills, secure code DevSecOps, Secure Code Warrior, Secure Software Summit, shift left
The recent Log4j vulnerability showed just how quickly a security bug could disrupt not just an industry, but the entire world. Organizations, especially federal agencies, will always find themselves at some level ...
Secure Software - shift left - cybersecurity - supply chain attacks - DevSecOps - shifting left - secure coding - secure code - DevOps

Secure Software Summit: Exploring Secure Coding Best Practices

| | chaos engineering, devsecops, secure code, secure coding, Secure Software Summit, shift left, shifting security left, supply chain security
In an era where software is dominating the world, the security and quality of code must remain a high priority. Delivering secure and reliable software at a rapid pace is crucial for most ...