DevSecOps
Survey Sees Spike in Untested Code Leading to a DevOps Crisis
A Sauce Labs survey found many developers admitted they pushed code into a production environment without testing ...
GitGuardian Adds Tool for Discovering Secrets in Public Repositories
GitGuardian added a tool that makes it possible for DevOps teams to search GitHub repos to determine if secrets have inadvertently found their way into other apps ...
Microsoft kills Python 3.7 ¦ … and VBScript ¦ Exascaling ARM on Jupiter
In this week’s #TheLongView: VS Code drops support for Python 3.7, Windows drops VBScript, and Europe plans the fastest ARM supercomputer ...
Pulumi Previews Tool to Integrate Secrets and Infrastructure Management
Pulumi previewed a tool that enables DevOps teams to unify environments, secrets and configuration (ESC) management ...
Checkmarx Surfaces Threat to GitHub Repositories
Checkmarx reported that malicious actors have been able to compromise GitHub's Dependabot, the free automated dependency management tool for software projects ...
Fortifying the Castle: A Quest to Secure the SDLC
Securing the SDLC is a never-ending battle against hidden risks and formidable adversaries and requires security champions to share their wisdom ...
3 Steps to Secure Your CI/CD Pipelines
Palo Alto Networks' Daniel Krivelevich shares a general three-step framework organizations can use to secure the CI/CD pipeline and surrounding areas ...
Five Great DevOps Job Opportunities
Looking for a great new DevOps job? Check out these available opportunities at Fidelity Investments, Caterpillar and more! ...
What DevOps Teams Should Know About Phishing and the Supply Chain
DevOps engineers are prime targets for phishing as cybercriminals look to infiltrate and disrupt the software supply chain ...
JFrog swampUP: Addressing the Advent of AI
Techstrong Group's Alan Shimel and Will Willis talked with JFrog's Stephen Chin about the impact of generative AI on software development ...
Splunk: Creating a Resilient and Dynamic Organization
Mitch Ashley talks with Ryan Kovar, distinguished tech security technologist and leader of SURGe with Splunk, and Cory Minton, field CTO for The Americas with Splunk, about building a dynamic and resilient ...
Summit Highlights Open Source Software Security Progress
The OpenSSF hosted a Secure Open Source Software (SOSS) Summit 2023 event during which it made available a Secure Open Source Software Vision Brief 2023 ...