Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: security

JFrog, NVIDIA, DevSecOps, security, SAST, DevSecOps, Tidelift, GenAI, software, security, devsecops, AI, AISecOps Digital.ai transformation DevOps security mobile DevSecOps Dynatrace Extends Reach of Application Security Module

JFrog Extends Alliance With NVIDIA to Secure AI Software Supply Chain

| | ai, devsecops, RBAC, security
JFrog and NVIDIA today announced they have expanded the integrations between their software development platforms to now include the Enterprise AI Factory, a set of frameworks and blueprints for building artificial intelligence ...
CISA, secure by design, ReversingLabs, open-source, AI, cybersecurity, tooling, CISA Security Scribe ReversingLabs software supply chain cybersecurity - software supply chain security - risks - cyberattacks - Log4J - vulnerabilities

How Benchmarking Can Help Software Development Teams Achieve CISA’s “Secure by Design”

| | devops, security, software development
In April 2023, the Cybersecurity and Infrastructure Security Agency (CISA) launched its Secure by Design initiative, directing technology companies to ‘prioritize the security of customers as a core business requirement, rather than ...
Minimus Unfurls Service for Accessing Secure Software Artifacts

Minimus Unfurls Service for Accessing Secure Software Artifacts

| | devsecops, Minimus, security, software artifacts
Minimus today at the 2025 RSA Conference launched a managed service through which it ensures application development teams are provided access to a secure set of minimal container images and virtual machines ...
Endor, AI agents, JFrog New Relic SRE AIOps self-service

Endor Labs Adds AI Agents to Automate Application Security Reviews

| | AI agents, devops, security
Endor Labs today added a set of artificial intelligence (AI) agents to its platform, specifically trained to identify security defects in applications and suggest remediations. Fresh off raising an additional $93 million ...
debt, technical,

The DevOps Bottleneck: Why IaC Orchestration is the Missing Piece

| | automation, devops, IaC, security
If you work in DevOps, you’ve heard it a thousand times: “Do more with less.” More automation, more security, more reliability—but with the same (or fewer) people. Meanwhile, your development teams keep ...
code data, agentic, JFrog, security, devsecops, Digma, code, Go, code, kernel, eBPF, Veracode GitKraken JFrog GitGuardian organizations, quality fear unknown software app Rust Contrast Security Adds API Support to Application Security Platform

JFrog Survey Surfaces Limited DevSecOps Gains

| | devops, devsecops, security, supply chain security
A global survey of 1,402 application developers, cybersecurity and IT operations professionals finds 71% work for organizations that, despite any potential vulnerabilities, still allow developers to download packages directly from the internet ...
Microsoft, VMs, VMware, tools, Google VMware cloud DevOps jobs Datadog Intel Jenkins Platform

Microsoft’s Hyperlight Wasm: Bringing WebAssembly to Secure Micro-VMs

| | open-source virtualization technology, security, VMs, Wasm
Microsoft expands its Hyperlight project with Hyperlight Wasm, enabling secure WebAssembly workloads in lightweight VMs across Windows, Linux, and macOS platforms ...
JFrog, NVIDIA, DevSecOps, security, SAST, DevSecOps, Tidelift, GenAI, software, security, devsecops, AI, AISecOps Digital.ai transformation DevOps security mobile DevSecOps Dynatrace Extends Reach of Application Security Module

Sonar Combines SAST and SCA Tools in Single Offer

| | AI coding tools, devsecops, SDLC security, security
Sonar today revealed it will at the end of May add an offering that combines its Static Application Security Testing (SAST) tool with the software composition analysis (SCA) tools it gained with ...
open source, software, security, open-source, Lineaje, Linux, open source, report, study, Open source code

OpenSSF Defines Baseline for Securing Open Source Software

| | open source software, security, vulnerabilities
The Open Source Security Foundation (OpenSSF) has launched an initiative to provide maintainers of open source software projects with a set of baseline security requirements that can be realistically attained and maintained ...
api, sprawl, Postman, APIs, engineering, API-first, strategy. API, Sideko, APIs, API, security, Sonar, vulnerabilities, API, APIs, developers, development, management, tools, API monetization, stack, platform, APIs API Security Summit -- API security -- cybersecurity - Application Programming Interfaces

7 Critical API Protection Strategies to Fortify Your API Security

| | APIs, KubeCon, security
Against a backdrop of escalating threats and costly consequences, organizations need a comprehensive, multilayered approach to API security ...
Checkmarx, data, Endor, SCA, supply chain, security, workflows, supply chain, software, supply chain security, appsec, polyfill, software, supply chains, DevOps, DevSecOps, Google supply chain

Endor Labs Extends Microsoft SCA Alliance to GitHub

| | devops, SCA tools, security, Software Supply Chain
Endor Labs has allied with GitHub to integrate its software composition analysis (SCA) tools directly within DevOps workflows ...
Go, attacker,

Open Source Software Security Concerns with Spike Curtis

| | Coder Technologies, open source, security, software
Spike Curtis, principal engineer for Coder Technologies, dives into why open source software security concerns are valid, and why the only viable option is to invest more in securing software supply chains ...
Show More