Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

armo

Happy second birthday, Kubescape!

Sep 19, 2023 By ARMO In ARMO
Guest post originally published on Kubescape’s blog by Ben Hirschberg. Co-Founder and CTO at ARMO and a Kubescape maintainer. What do you get a piece of software for its second birthday? A brand new blog, of course! And cake. More on the cake later. Kubescape is an open-source Kubernetes security platform that helps you identify and fix security risks, misconfigurations and vulnerabilities in your Kubernetes clusters.
Read Post
mend

Communicating the Value of Your Company With SBOMs

Sep 19, 2023 By AJ Starita In Mend

A Software Bill of Materials (SBOM) is a detailed, machine-readable, nested list of all of the third-party components and their dependencies that compose a modern software product. SBOMs have particular importance in the health, finance, critical infrastructure, and military sectors, and in mergers and acquisitions, but all industries and applications can benefit from them. SBOMs have been around for over a decade but they’ve gained serious traction in the wake of the SolarWinds breach.

Read Post

Integrate HashiCorp Vault & 1Password using Tines

Sep 19, 2023 By Tines In Tines
API-based automations rely on credentials and secrets. Managing these secrets across multiple locations can increase the workload for administrators. In this webinar, Tines Solutions Engineer Chris Kohanek will show you how to securely reference secrets stored in 1Password and HashiCorp Vault. This means you won't need to store API credentials in Tines, and updates to your secrets won't disrupt your Tines Stories. We'll also guide you through setting up a Secrets Automation Workflow in 1Password and demonstrate how Tines can automate the process of referencing secrets, making it more secure and reducing the administrative burden on your team.
View Video

Add Your Own Custom Secrets Detectors To GitGuardian

Sep 14, 2023 By GitGuardian In GitGuardian
Did you know you can add custom detectors to make GitGuardian Secrets Detection even more powerful? GitGuardian already looks for over 390 different types of specific secrets - from Adobe and AWS keys to Zoom and Zendesk Tokens. That's on top of looking for over a dozen generic patterns like Bearer tokens and JSON web tokens. Now, anyone on a Business plan or higher can request to extend GitGuardian's secrets detection engine to support detectors specific to their organization.
View Video
armo

Real-time Security Alerts via Microsoft Teams

Sep 14, 2023 By Yossi Ben Naim In ARMO
Prioritizing the security of your Kubernetes environment is of utmost importance. As organizations increasingly rely on containerization for their applications, the need for robust security measures is ever-growing. But security doesn’t work in isolation; it should seamlessly blend into your workflow. This is where the integration of ARMO Platform with collaboration tools like Microsoft Teams becomes invaluable.
Read Post

DevSecOps101: To Do or Not To Do

Sep 14, 2023 By JFrog In JFrog
DevSecOps, a progression from DevOps, involves embedding security practices throughout the software development process. It emphasizes collaborating, automating, and continuous monitoring to ensure efficient delivery of secure and reliable software. We explore concepts of DevSecOps such as: We review the case of Fannie Mae, who embraced DevSecOps and succeeded in improving collaboration, reduced vulnerabilities, and accelerated software development.
View Video

Office Hours: Insights - Focus on Top RIsks

Sep 14, 2023 By Snyk In Snyk
We recently announced Insights, a unique capability providing organizations with code to cloud application intelligence that enables development and security teams to manage their application security posture more effectively by identifying, prioritizing, and fixing those issues posing the greater risk. Watch: What Insights is How to access Insights How to use Insights Watch if you are interested in using Insights, have started, or work as an engineer, developer, or in DevOps.
View Video
mend

Software Supply Chain Security: The Basics and Four Critical Best Practices

Sep 14, 2023 By AJ Starita In Mend

Modern enterprise software is typically composed of some custom code and an increasing amount of third-party components, both closed and open source. These third-party components themselves very often get some of their functionality from other third-party components. The totality of all of the vendors and repositories from which these components (and their dependencies) come make up a large part of the software supply chain.

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.