Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

March 2023

rezilion

SCA and CI/CD: The Most Delicious Alphabet Soup

Mar 28, 2023 By Rezilion In Rezilion

In the continuous delivery (CI)/continuous delivery (CD) pipeline, one of the key ingredients to add to the pot is software composition analysis (SCA), an automated process that identifies the open source software in a codebase. We know that app development teams are under pressure to deliver releases with new features and fix bugs as quickly as possible–and before the competition does. Increasingly, they rely on CI/CD to build, test, and quickly add small updates.

Read Post
armo

Securing your CI/CD pipelines: How GitHub Actions can Help

Mar 28, 2023 By Oshrat Nir In ARMO
This post discusses how GitHub Actions can enhance the security of CI/CD pipelines by automating security-related tasks and providing integration with other security tools, version control, access control, and auditing. These days, security has become more important than ever in software development processes. With cyberattacks becoming increasingly frequent and sophisticated, organizations must prioritize security throughout their software development lifecycle to protect their systems, data, and users.
Read Post

Dev First Prevention Strategies Using the CI/CD

Mar 23, 2023 By Snyk In Snyk
Watch this office hours where we cover best practices for introducing a blocking/prevention strategy using the CI/CD Integration. Security and engineering teams often fail to find a balance between meeting the necessary security objectives for their organization and ensuring maximum velocity. While security teams view the process of blocking new critical severity vulnerabilities as a basic security best practice, engineering teams often push back out of fear that it will create too much friction for their developers.
View Video

Copyright © 2024 OpsMatters™. All rights reserved.