Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CI CD

Sponsored Post
kondukto

Running DAST in CI/CD for Regression Testing

Feb 29, 2024 By Andreas Wiese In Kondukto
In the fast-paced field of software development, ensuring applications remain functional and secure through updates is essential. Regression testing, which checks that new code doesn't harm existing features, is key. Dynamic Application Security Testing (DAST) tools play a crucial role here. They identify security flaws in active web applications. This article explores the importance of DAST tools, integration, and enhancement in regression testing.
Read Post
tigera

Integrating Calico Image Assurance (Vulnerability Management) with Azure DevOps Build Pipeline

Feb 28, 2024 By Faisal Naseem In Tigera
In cloud-native software development, ensuring the supply chain security of containerized applications in Kubernetes (K8s) environments is of utmost importance. With the continuous evolution of threats, safeguarding your containerized applications at every stage is not a choice anymore; it is an absolute necessity. With Calico’s vulnerability management, you can scan container images across three pivotal application lifecycle stages: Let’s break down the scanning guardrails offered by Calico.
Read Post
signmycode

Researchers Demo New CI/CD Attack in PyTorch Supply-Chain that Exploiting GitHub Self-Hosted Action Runner

Jan 23, 2024 By SignMyCode In SignMyCode
The new guidelines to secure GitHub repositories are being followed by every enterprise. These new protocols were circulated after discovering a vulnerable loophole in the self-hosted action runner in August 2023. To know more about the vulnerability, how and who discovered it, and its mitigation, read further.
Read Post
signmycode

What Is CI/CD? Everything to Know About CI/CD Pipeline

Jan 16, 2024 By SignMyCode In SignMyCode

With the introduction of new technologies, every sector has improved and increased its potential and productivity. Similarly, the software development landscape has undergone several advancements, among which the CI/CD pipeline is highly trending and used today. It has been over a couple of years since software development companies implemented the CI/CD concept. But, still, there are some questions, doubts, and queries roaming around about it.

Read Post
tripwire

CI/CD Security: Advanced Best Practices to Secure Your Pipelines

Jan 3, 2024 By Gilad David Maayan In Tripwire

Continuous Integration and Continuous Delivery (CI/CD) security has become crucial to modern software development practices. As the speed of software development increases with DevOps and Agile methodologies, there is a growing need to ensure the integrity of software across the entire development pipeline.

Read Post

Unveiling the Chaos: Navigating the Security Nightmare in Modern DevOps and CI/CD Environments

Nov 30, 2023 By Razorthorn In Razorthorn
Dive deep into the tumultuous world of modern software development in our latest video, where we unravel the complexities and security pitfalls of CI/CD, DevOps, and DevSecOps. Many believe they've fortified their tools, boasting secure Ansible, Jira, and Jenkins, only to find their GitHub wide open. Join us as we dissect the challenges of transitioning from the development environments of the past to the cloud-centric landscapes of today.
View Video
Spectral

Top 10 CI/CD Security Tools

Sep 27, 2023 By Eyal Katz In Spectral

On the one hand, your sales department is pushing for new features at an alarming rate, forcing you into faster deployment processes. On the other hand, you have the looming threat of millions of dollars in damages if your security is breached. Software development is all about finding the middle ground – if you can’t compromise on either side, what should you do?

Read Post

Hands-on guide to Runtime Security for CI/CD Pipelines with StepSecurity

Sep 27, 2023 By GitGuardian In GitGuardian
In this webinar, we are joined by Varun Sharma and Ashish Kurmi, founders of StepSecurity. StepSecurity is a pioneer in runtime security for CI/CD pipelines. Given that CI/CD is a high-privileged environment that builds release artifacts and has admin cloud credentials, there has been an increase in attacks on CI/CD pipelines. The importance of CI/CD Security has been underlined by recent guidance from the Cybersecurity & Infrastructure Security Agency (CISA) and the National Security Agency (NSA)
View Video

Copyright © 2024 OpsMatters™. All rights reserved.