DevOps and the popsicles
Sonu and Monu were school friends. Their school decided to give a lesson on entrepreneurship to all their students. School asked them to set up a stall and sell products for 3 days in the school’s entrepreneurship event. Sonu and Monu decided to se.....»»
Legit Security Legitify detects security and compliance issues across GitHub assets
Legit Security announced Legitify, an open-source security tool to secure GitHub implementations. Legitify is a GitHub misconfiguration scanner that helps security teams and DevOps engineers manage and enforce their GitHub configurations in a secure.....»»
Delinea DevOps Secrets Vault enhancements reduce the risk of compromised credentials
Delinea announced the latest release of DevOps Secrets Vault, its high-speed vault for DevOps and DevSecOps teams. New enhancements include development support on the most recent Mac computers, and improved secrets management usability through automa.....»»
Akuity Platform helps DevOps manage and scale Kubernetes application delivery
Akuity.io has released the Akuity Platform, a fully-managed SaaS service for simpler, safer and faster Kubernetes application delivery, using Argo. Kubernetes, Argo and GitOps are essential to application delivery, though operational complexities rem.....»»
How CISOs can safeguard security in CI/CD environments
DevOps is a staple at every forward-thinking organization these days. The agile development and release formula helps companies address customer issues and marketplace innovation demands quickly. However, DevOps does not mesh well with traditional se.....»»
Critical RCE bug in GitLab patched, update ASAP! (CVE-2022-2884)
GitLab has fixed a remote code execution vulnerability (CVE-2022-2884) affecting the Community and the Enterprise Edition of its DevOps platform, and has urged admins to upgrade their GitLab instances immediately. The vulnerability was reported throu.....»»
Is security becoming a priority for DevOps teams?
GitLab released the results of its annual DevSecOps survey which highlights the continued prioritization of security and compliance, investment in toolchain consolidation, and the ongoing impacts of rapid DevOps adoption. The survey consisted of 5,00.....»»
Opsera unveils SaaS DevOps capabilities to improve agility and security posture for enterprises
Opsera has unveiled its enterprise-wide SaaS DevOps capabilities to manage and modernize software releases. It also announced a new study commissioned from Vernon Keenan, senior industry analyst at Salesforcedevops.net. The research affirms the need.....»»
How to manage the intersection of Java, security and DevOps at a low complexity cost
In this Help Net Security video, Erik Costlow, Senior Director of Product Management at Azul, talks about Java centric vulnerabilities and the headache they have become for developers everywhere. He touches on the need for putting security back into.....»»
Appdome ThreatScope brings attack and threat intelligence into the mobile DevOps CI/CD pipeline
Appdome released ThreatScope, a Mobile Security Operations Center (SOC) that’s integrated inside the Appdome DevSecOps build system. With ThreatScope, Appdome combines the power of mobile attack and threat data, telemetry, and intelligence with cli.....»»
Traceable AI adds eBPF to its security platform to improve observability and visibility into all API activity
Traceable AI adds extended Berkeley Packet Filter (eBPF) data to its platform. Traceable helps CISOs, DevSecOps, and DevOps teams obtain deeper observability and visibility into APIs without additional instrumentation or latency — advancing compani.....»»
Now is the time to focus on software supply chain security improvements
The shift to cloud-native development, along with the increased speed in development brought about by the adoption of DevOps processes, has made the challenges connected with securing software supply chains infinitely more complex, according to recen.....»»
CircleCI launches support for GitLab SaaS developers
CircleCI released support for GitLab SaaS customers. Now, joint customers can enjoy interoperability between tools from GitLab, The One DevOps Platform for software innovation, and CircleCI. Software development teams using GitLab can now build, test.....»»
NetApp Spot Security identifies and assesses cloud security posture risks
NetApp released Spot Security, delivering a solution for continuous assessment and analysis of cloud security posture. Spot Security enables DevOps and SecOps teams to easily collaborate to identify misconfigurations, reduce their potential attack su.....»»
Ermetic enables organizations to provide secure JIT access to cloud environments for developers
Ermetic announced the Ermetic Platform now enables organizations to automate the process of granting developers and DevOps teams “Just in Time” (JIT) access to cloud infrastructure environments. These new capabilities enable users to request, on.....»»
7 DevSecOps myths and how to overcome them
DevOps and security teams have long been at odds with each other over the software delivery pipeline. DevOps teams have historically viewed security teams as the “release prevention department” with overly conservative approaches to risk mitigati.....»»
Obsidian Security strengthens engineering team with four new senior hires
Obsidian Security announced four new senior hires on its engineering team: Zhiping Liu as Senior Principal Engineering Lead, Shuyang Wang, Head of Threat Research, Phil Whyte, Senior Director of Engineering and Autumn Wang, Director of DevOps. The ke.....»»
LDRA integrates with Microsoft Azure DevOps to improve ‘shift left’ strategy for organizations
LDRA announced integration with Microsoft Azure DevOps. LDRA’s integration with this cloud-hosted development and deployment solution helps small- and medium-sized organizations more efficiently deploy the ‘shift left’ strategy—a core princip.....»»
YouAttest collaborates with JumpCloud to give users access reviews for identity governance
YouAttest announced their product integration with JumpCloud – an open directory platform that gives IT, security operations, and DevOps secure, frictionless access to control and manage employee identities, their devices, and apply Zero Trust.....»»
Tromzo Security Guardrails improves security posture for developers
Tromzo announced the expansion of the product to provide pre-built, contextual, and real-time security policies and controls in CI/CD through security guardrails. The adoption of cloud-native applications and infrastructure has propelled DevOps and a.....»»
Intelligent Waves and Horizon3.ai join forces to provide security for DoD mission support
Intelligent Waves announced a strategic collaboration with Horizon3.ai to support next-generation cybersecurity protection in DevOps for the DoD special operations community. Intelligent Waves will utilize Horizon3.ai’s NodeZero autonomous pene.....»»