CI CD

Wishes Do Come True: Fast Development, Secure Delivery

Dec 16, 2020 By Snyk In Snyk

Organizations re-thinking their software delivery lifecycle are faced with a dilemma: how to speed up the pace of development necessary to surpass their competition, without sacrificing the security of the applications they’re delivering? CI/CD practices and tools have risen up to help meet this need, but fitting legacy applications and security tools into these modern pipelines exposes new gaps that risk slowing release velocity.

View Video

Snyk

Read more about Wishes Do Come True: Fast Development, Secure Delivery

How to Run Security Checks in CI/CD with Kondukto?

Dec 14, 2020 By Kondukto In Kondukto

With Kondukto CLI, it is possible to trigger scans in pipelines and automatically break builds in any CI/CD tool whenever the project does not meet security criteria.

View Video

Kondukto

Read more about How to Run Security Checks in CI/CD with Kondukto?

Adding Helm Chart Security Mitigation Notes to ChartCenter

Dec 7, 2020 By Deep Datta In JFrog

Earlier this year, we launched ChartCenter, our newest community platform to help Kubernetes developers find Helm charts. This new free Helm central repository was built with chart immutability in mind— meaning every version of a Helm chart and every version in ChartCenter will always be available even if the original source goes down.

Read Post

JFrog

Read more about Adding Helm Chart Security Mitigation Notes to ChartCenter

DevSecOps Best Practices With The JFrog Platform

Nov 30, 2020 By JFrog In JFrog

JFrog Xray – an integral part of the JFrog Unified DevOps platform – enables continuous security and compliance throughout your SDLC: spanning binaries management, container images, and your end-to-end CI/CD pipelines. In this webinar, you will learn how to leverage JFrog Xray to enable DevSecOps.

View Video

JFrog

Read more about DevSecOps Best Practices With The JFrog Platform

Commit Code Confidently with the Nightfall DLP CircleCI Orb

Oct 27, 2020 By Nightfall In Nightfall

Nightfall Data Loss Prevention (DLP) is now available as a CircleCI orb. CircleCI orbs are reusable snippets of code that help automate repeated processes, speed up project setup, and make it easy to integrate with third-party tools. With the Nightfall DLP orb, you can scan for sensitive items and prevent developers from accidentally committing sensitive information. We’re excited to announce our launch with CircleCI and share what you can do with the Nightfall DLP orb.

Read Post

Nightfall

Read more about Commit Code Confidently with the Nightfall DLP CircleCI Orb

[webinar] How To Build A Cloud Native DevSecOps Pipeline With JFrog and AWS

Oct 26, 2020 By JFrog In JFrog

Are you taking advantage of the best practices to easily adopt DevSecOps in the cloud? Discover the strategies and tools you can use to ensure you can easily overcome the challenges of securing your software releases.

View Video

JFrog

Read more about [webinar] How To Build A Cloud Native DevSecOps Pipeline With JFrog and AWS

How The JFrog Platform Drives DevSecOps At Scale

Oct 23, 2020 By JFrog In JFrog

With the JFrog Platform at the core of your DevSecOps tool chain, you will over achieve your deployment frequency and change lead time metrics. By integrating JFrog into your existing CI environment current skills (people) and processes are maximized, while aggregating all the commercial and open source software artifacts, dependencies and documentation for re-use across all of your development projects to drive consistency and quality of the build.

View Video

JFrog

Read more about How The JFrog Platform Drives DevSecOps At Scale

Air Gap Distribution Delivers Peace of Mind to Isolated Environments

Oct 13, 2020 By Randy Kau In JFrog

The best way to stay out of danger is to keep far away from where danger lurks. But in the internet age, the global network means risk to your systems is from everywhere, at all times. With estimates that worldwide damage from cybercrime will exceed 6 trillion dollars by 2021, many companies choose, or are required by regulations to isolate their most sensitive systems to avoid any type of security breach.

Read Post

JFrog

Read more about Air Gap Distribution Delivers Peace of Mind to Isolated Environments

Image scanning for Google Cloud Build

Oct 6, 2020 By Vicente Herrera García In Sysdig

In this article, you will learn how to add inline image scanning to a Google Cloud Build pipeline using the Sysdig Secure DevOps platform. We will show you how to create a basic workflow to build your container image, scan the image, and push it to a registry. We will also customize scanning policies to stop the build if a high-risk vulnerability is detected.

Read Post

Sysdig

Read more about Image scanning for Google Cloud Build

Best Practices: Onboarding Jfrog Xray

Sep 30, 2020 By JFrog In JFrog

JFrog Xray is a Software Composition Analysis tool (SCA) which is tightly integrated with JFrog Artifactory to ensure security and compliance governance for the organization binaries throughout the SDLC. This video provides best practices learned from customers for successfully deploying JFrog Xray into your organization and performing a real Shift-Left. It will focus on two keys to success, 1. involving R&D and 2. starting small and working in cycles.

View Video

JFrog

Read more about Best Practices: Onboarding Jfrog Xray

Subscribe to CI CD

Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CI CD

Wishes Do Come True: Fast Development, Secure Delivery

How to Run Security Checks in CI/CD with Kondukto?

Adding Helm Chart Security Mitigation Notes to ChartCenter

DevSecOps Best Practices With The JFrog Platform

Commit Code Confidently with the Nightfall DLP CircleCI Orb

[webinar] How To Build A Cloud Native DevSecOps Pipeline With JFrog and AWS

How The JFrog Platform Drives DevSecOps At Scale

Air Gap Distribution Delivers Peace of Mind to Isolated Environments

Image scanning for Google Cloud Build

Best Practices: Onboarding Jfrog Xray

Monthly Archive

Follow Us