Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CI CD

Sponsored Post
kondukto

How to integrate continuous API fuzzing into the CI/CD?

Feb 28, 2023 By Cenk Kalpakoğlu In Kondukto

API security is a growing concern for businesses that offer or consume APIs. APIs, or application programming interfaces, allow different software systems to communicate and exchange data. They allow businesses to build integrations and connect with partners, customers, and other stakeholders. However, as more sensitive data is being shared through APIs, it is essential to ensure that these interfaces are secure and protected from unauthorized access or manipulation. In this blog post, we'll discuss how continuous fuzzing can be a powerful tool to secure APIs and how developers can adopt a "secure by default" approach by integrating continuous fuzzing into SDLC processes.

Read Post
mend

CI/CD and the Promise of Agile Transformation

Feb 23, 2023 By Adam Murray In Mend

Continuous integration/continuous delivery (CI/CD), promises to help deliver software faster and more reliably. It does this by pushing frequent updates and fixes regardless of size and using automation tools to help the process run smoothly. According to Gartner, CI/CD is the most common agile practice currently being adopted by organizations. So how does CI/CD work and why is it critical for DevOps teams?

Read Post
code intelligence

How CI/CD-Integrated Fuzzing Improves Automotive Software Security

Feb 10, 2023 By Daniel Teuchert In Code Intelligence
As vehicles are becoming increasingly dependent on software, automotive software teams are adopting CI/CD (continuous integration and continuous deployment/delivery). This enables them to build, test, and deploy code faster than ever while simultaneously reducing potential maintenance costs. In automotive projects, functional and security bugs can be highly consequential, especially if they are found in the later stages of software development or, even worse, after shipping.
Read Post
gitguardian

How to Bake Security into your CI/CD Pipeline

Feb 1, 2023 By GitGuardian In GitGuardian
According to IBM Security's "The Cost of a Data Breach Report", the global cost of data breaches in 2022 increased by 2.6% compared to previous year, reaching $4.35 million. The source code of major companies like Nvidia, Microsoft, Uber, Slack, Toyota was leaked, often caused by usage of hardcoded secrets (you can see more details in the infographics below). In those cases, lateral movements were compromising software supply chain security. In their report Gartner claims about 45% of companies should expect to become targets of supply chain attacks by 2025.
Read Post

Securing your Jenkins CI/CD Container Pipeline with CrowdStrike

Dec 29, 2022 By CrowdStrike In CrowdStrike
In any software development cycle, it is best practice to catch issues as early as possible since it both improves security and decreases the workload for both developers and security. In order to do this, CrowdStrike offers solutions for developers at build time that allow them to assess their Docker container images and review summarized report data integrated with their favorite CI/CD tools like Jenkins.
View Video
CrowdStrike

Securing your Jenkins CI/CD Container Pipeline with CrowdStrike

Dec 28, 2022 By Jay Flora In CrowdStrike

In any software development cycle, it is best practice to catch issues as early as possible since it both improves security and decreases the workload for both developers and security. In order to do this, CrowdStrike offers solutions for developers at build time that allow them to assess their Docker container images and review summarized report data integrated with their favorite CI/CD tools like Jenkins.

Read Post
synopsys

Automating web security testing within your DevOps pipelines

Dec 14, 2022 By Charlotte Freeman In Synopsys
Seeker IAST helps organizations achieve continuous testing without creating friction in DevOps pipelines. In traditional security, developers run tests for code security and operators ensure that firewalls and other protections work in the production environment. Access control and other tasks are handled by security experts and managers. DevSecOps uses version control and CI/CD pipelines to configure and manage security tasks automatically, across all teams, before deployment.
Read Post
Subscribe to CI CD

Copyright © 2024 OpsMatters™. All rights reserved.