Tag: devsecops

DevsecOps software supply chain data, pipelines, data lineage

Best of 2024: Securing the DevOps Pipeline: Tools and Best Practices

Gilad David Maayan | December 27, 2024 | CI/CD, DevOps pipeline, devsecops, security, supply chain

Because of the critical nature of the DevOps pipeline, security is becoming a top priority. Here's how to integrate DevSecOps ...

Tidelift, DevSecOps, code, open source, AWS, devsecops, Digital.ai DevSecOps business SDLC Integrating Security in the Development Process with DevSecOps

Sonar Acquires Tidelift to Extend DevSecOps Reach Into Open Source Software

Mike Vizard | December 17, 2024 | devsecops, open source code

Sonar today revealed it has agreed to acquire Tidelift to gain access to third-party open-source code that it plans to integrate into its static code analysis tools ...

DevSecOps, OpenText, Process, DevSecOps, ASPM, Cycode SecOps GitLab Quali SigStore OWASP DevSecOps vulnerabilities security Pulumi DevSecOps Analyzing Code for Security Vulnerabilities

OpenText Allies With Secure Code Warrior to Improve Application Security

Mike Vizard | December 17, 2024 | app developers, devsecops

OpenText has partnered with Secure Code Warrior to make it simpler for application developers to learn best DevSecOps practices as needed ...

AWS Adds Declarative Policies Capability to Reduce DevSecOps Friction

Mike Vizard | December 5, 2024 | AWS, declarative policies, devops, devsecops

Amazon Web Services (AWS) this week added a declarative policies capability that promises to reduce the level of DevSecOps friction that far too many software engineering teams continue to encounter ...

The Importance of Database Release Automation Platforms in the Era of Digital Transformation

Gil Nizri | December 3, 2024 | database release automation, devops, devsecops, digital transformation, DORA

The path to efficiency, security and confidence in database operations lies in leveraging advanced automation platforms ...

devsecops, developers, appsec, tool, appsec, Bionic modernization DevSecOps AppSec Cortex materialized view SIEM

How an Effective AppSec Program Shifts Your Teams From Fixing to Building

Jonathan Singer | December 2, 2024 | appsec, devops, devsecops

Development teams are under growing pressure to build cutting-edge applications with shorter development lifecycles. However, they are often slowed down by the growing burden of fixing security vulnerabilities. Ineffective application security processes ...

Microsoft Enlists Endor Labs to Integrate SCA Tool with CNAPP

Mike Vizard | November 25, 2024 | application security, CNAPP, devsecops, security

Microsoft has tapped Endor Labs to incorporate a software composition analysis (SCA) tool into its cloud-native application protection platform (CNAPP) ...

agility, agility and security, SDLC, identity, security, development,

Four Steps to Balance Agility and Security in DevSecOps

Chris Wolters | November 6, 2024 | Agility, devops, devsecops, sdlc, security

Balancing agility and security in DevSecOps is achievable with the right mix of automation, collaboration and continuous feedback. By embedding security into agile processes, organizations can deliver software that is both fast ...

DevSecOps, WhiteRabbitNeo, security, Prime, DevSecOps

Update to Open Source WhiteRabbitNeo Project Brings Smarter AI to DevSecOps

Mike Vizard | October 23, 2024 | ai, devsecops, LLMs

Kindo today revealed that WhiteRabbitNeo, an open-source DevSecOps platform, has been updated to take advantage of improved large language models (LLMs) that generate more accurate outputs when resolving prompts related to offensive ...

DevSecOps, appsec, ai, open-source, Sonatype, AppSec , devsecops, Traceable supply chain

AI Will Soon Automate DevSecOps Governance

Mike Vizard | October 17, 2024 | ai, appsec, devsecops

The role cybersecurity teams play in ensuring applications are secure is about to become a lot more proactive in the age of artificial intelligence (AI) ...

Prime Security to Apply AI Guardrails to DevSecOps Workflows

Mike Vizard | October 10, 2024 | AI tools, devsecops, guardrails, workflows

Prime Security today emerged from stealth to make available a beta version of a platform that leverages artificial intelligence (AI) to ensure the appropriate guardrails are being followed as software is developed ...

Survey Surfaces Steady Gains in DevSecOps Adoption

Mike Vizard | October 2, 2024 | devsecops, software security, survey

A survey of more than 500 DevOps practitioners finds less than half (47%) of respondents work for organizations that regularly employ best DevSecOps practices. Conducted by Techstrong Research, an arm of the ...