#devsecops

[ follow ]
#ai
fromDevOps.com
2 days ago
Artificial intelligence

Cycode Delivers AI Agent to Assess How Exploitable Vulnerabilities Are - DevOps.com

fromDevOps.com
1 month ago
Software development

Kusari Adds AI Security Tool to Inspect Code as Pull Requests Are Made - DevOps.com

fromDevOps.com
2 days ago
Artificial intelligence

Cycode Delivers AI Agent to Assess How Exploitable Vulnerabilities Are - DevOps.com

fromDevOps.com
1 month ago
Software development

Kusari Adds AI Security Tool to Inspect Code as Pull Requests Are Made - DevOps.com

fromDevOps.com
1 week ago

DevOps Meets Blazor in 2025: Streamlining .NET Web App Delivery for the Future - DevOps.com

Blazor's rise aligns with transformative shifts in the DevOps landscape, particularly with AI and ML integration, which enhances DevOps processes and app performance.
Web frameworks
fromDevOps.com
1 week ago

"Shove Left" - Dumping Downstream Tasks Onto Developers - A Recipe for Failure - DevOps.com

Shift Left must focus on collaboration and enablement, rather than shifting responsibilities onto developers.
#ai-in-devops
#application-security
fromDevOps.com
2 weeks ago
Privacy technologies

Veracode Allies with Wiz to Bring More Context to DevSecOps Workflows - DevOps.com

fromDevOps.com
3 months ago
Artificial intelligence

Symbiotic Security Unveils AI Coding Tool Trained to Identify Vulnerabilities - DevOps.com

fromDevOps.com
4 months ago
Software development

Report: Bulk of Application Vulnerabilities Don't Require Immediate Attention - DevOps.com

fromDevOps.com
10 months ago
Information security

Legit Security Adds Application Security Rating Scorecards to ASPM Platform - DevOps.com

fromDevOps.com
2 weeks ago
Privacy technologies

Veracode Allies with Wiz to Bring More Context to DevSecOps Workflows - DevOps.com

fromDevOps.com
3 months ago
Artificial intelligence

Symbiotic Security Unveils AI Coding Tool Trained to Identify Vulnerabilities - DevOps.com

fromDevOps.com
4 months ago
Software development

Report: Bulk of Application Vulnerabilities Don't Require Immediate Attention - DevOps.com

fromDevOps.com
10 months ago
Information security

Legit Security Adds Application Security Rating Scorecards to ASPM Platform - DevOps.com

#devops
DevOps
fromDevOps.com
4 months ago

Bridging the Dev and SecOps Gap: How Intelligent Continuous Security Enables True End-to-End Security - DevOps.com

Intelligent Continuous Security (ICS) addresses longstanding security issues in DevOps by integrating security early and continuously within the software development lifecycle.
fromInfoWorld
6 months ago
DevOps

5 best practices for securing CI/CD pipelines

Integrating security into CI/CD processes from the start prevents costly fixes and enhances deployment reliability.
DevOps
fromDevOps.com
1 month ago

DevEx Got You This Far: What's Next for True DevSecOps Maturity? - DevOps.com

Security integration in DevOps requires more than just improved developer experience; it needs a shift to shared responsibility and culture.
Organizations must advance beyond DevEx for true DevSecOps maturity.
DevOps
fromDevOps.com
4 months ago

Bridging the Dev and SecOps Gap: How Intelligent Continuous Security Enables True End-to-End Security - DevOps.com

Intelligent Continuous Security (ICS) addresses longstanding security issues in DevOps by integrating security early and continuously within the software development lifecycle.
#software-development
fromIT Pro
1 month ago

Mainframe developers are stuck with outdated tools - GitLab and IBM want to solve that

This fragmentation leads to higher costs and limits developers' abilities to effectively collaborate and innovate, which is crucial in today's fast-paced tech landscape.
DevOps
#gitlab
fromVuejobs
1 month ago
DevOps

Intermediate Fullstack Engineer (Ruby/vue.js), Software Supply Chain Security: Pipeline Security at GitLab

fromInfoQ
1 month ago
DevOps

GitLab 17.11 Enhances DevSecOps with Custom Compliance Frameworks and Expanded Controls

DevOps
fromInfoQ
2 months ago

GitLab Adds AI Code Assistance with Self-Hosted GitLab 18 Release

GitLab 18.0 enhances its DevSecOps platform with AI features integrated into Premium and Ultimate tiers, improving development workflows.
DevOps
fromDevOps.com
2 months ago

GitLab Extends Scope and Reach of Core CI/CD Platform - DevOps.com

GitLab 18 improves CI/CD capabilities with integrated AI features and easier access to advanced tools.
DevOps
fromInfoQ
5 months ago

GitLab Introduces Advanced Vulnerability Tracking to Tackle Code Volatility and Double Reporting

GitLab's new feature enhances vulnerability management by addressing code volatility and double reporting issues.
fromVuejobs
1 month ago
DevOps

Intermediate Fullstack Engineer (Ruby/vue.js), Software Supply Chain Security: Pipeline Security at GitLab

fromInfoQ
1 month ago
DevOps

GitLab 17.11 Enhances DevSecOps with Custom Compliance Frameworks and Expanded Controls

DevOps
fromInfoQ
2 months ago

GitLab Adds AI Code Assistance with Self-Hosted GitLab 18 Release

GitLab 18.0 enhances its DevSecOps platform with AI features integrated into Premium and Ultimate tiers, improving development workflows.
DevOps
fromDevOps.com
2 months ago

GitLab Extends Scope and Reach of Core CI/CD Platform - DevOps.com

GitLab 18 improves CI/CD capabilities with integrated AI features and easier access to advanced tools.
DevOps
fromInfoQ
5 months ago

GitLab Introduces Advanced Vulnerability Tracking to Tackle Code Volatility and Double Reporting

GitLab's new feature enhances vulnerability management by addressing code volatility and double reporting issues.
fromDevOps.com
1 month ago

AWS Extends Cloud Security Reach to Include DevSecOps Tools to Scan Code - DevOps.com

AWS's Amazon Inspector is now available, offering integrated code vulnerability scanning with GitHub and GitLab.
DevOps
fromDevOps.com
1 month ago

How to Embed Security Into Enterprise DevOps Pipelines - DevOps.com

DevSecOps promotes integrating security from the start of development processes.
A security-first culture is essential for effective DevSecOps implementation.
fromDevOps.com
1 month ago

JFrog Extends Alliance With NVIDIA to Secure AI Software Supply Chain - DevOps.com

JFrog and NVIDIA have expanded integrations to include the Enterprise AI Factory, enabling the management of AI applications through JFrog's Software Supply Chain Platform.
Artificial intelligence
fromDevOps.com
1 month ago

Code Signing in the DevOps Era: Silver Bullet or Security Theater? - DevOps.com

In high-velocity environments, security controls are only effective if they blend seamlessly with development workflows. This is where code signing often stumbles.
Information security
#software-security
fromDevOps.com
2 months ago

Why CI/CD Pipelines Break Zero-Trust: A Hidden Risk in Enterprise Automation - DevOps.com

Zero-trust principles are crucial in modern cybersecurity yet CI/CD pipelines often ignore them by assuming automation is inherently trustworthy, creating security vulnerabilities.
DevOps
fromInfoQ
3 months ago

Visibility in Cloud Security: How Exactly Are Our Cloud Environments Configured?

Understanding security posture management is essential for identifying breaches and misconfigurations in cloud environments.
DevOps
fromInfoWorld
3 months ago

Bringing DevOps, DevSecOps, and MLOps together

EveryOps integrates DevOps, DevSecOps, and MLOps for a unified approach to software development.
The software development landscape is evolving towards more complex applications influenced by AI.
#cybersecurity
Artificial intelligence
fromHackernoon
1 year ago

Cyber Startup Pillar Security Raises $9M in Seed Funding to Defend AI with its Own Tech | HackerNoon

Pillar focuses on AI security risks and highlights the ineffectiveness of traditional cybersecurity tools in the intelligence age.
Artificial intelligence
fromHackernoon
1 year ago

Cyber Startup Pillar Security Raises $9M in Seed Funding to Defend AI with its Own Tech | HackerNoon

Pillar focuses on AI security risks and highlights the ineffectiveness of traditional cybersecurity tools in the intelligence age.
fromInfoWorld
3 months ago

Puppet devsecops updated to deal with security maladies

Perforce's Puppet Enterprise Advanced platform now integrates security remediation into infrastructure workflows, promoting swift responses to AI-driven threats and reducing operational inefficiencies.
DevOps
fromDevOps.com
3 months ago

Endor Labs Adds AI Agents to Automate Application Security Reviews - DevOps.com

Endor Labs introduces AI agents for advanced security defect identification and remediation in application architecture.
Information security
fromHackernoon
2 years ago

From Repos to Risks: How Hardcoded Secrets in GitHub Source Code Create Security Risks | HackerNoon

Hardcoded secrets in source code expose organizations to significant security risks, necessitating greater awareness and secure practices in development environments.
fromITPro
4 months ago

Developers spend 17 hours a week on security - but don't consider it a top priority

Three quarters of developers spend over 17 hours weekly on security tasks, indicating a significant workload despite only 21% prioritizing security in coding.
DevOps
DevOps
fromDevOps.com
4 months ago

Blending AI and DevSecOps: Enhancing Security in the Development Pipeline - DevOps.com

Integrating AI into DevSecOps enhances security through automation and proactive threat management.
DevOps
fromDevOps.com
4 months ago

Cycode Adds SAST Tool to ASPM Platform - DevOps.com

Cycode improves SAST accuracy, reducing false positives for better trust among developers.
DevOps
fromDevOps.com
5 months ago

DeepSource Open Sources Globstar Alternative to Semgrep to Analyze Code - DevOps.com

Globstar offers a modern, permissive alternative to Semgrep for static code analysis in DevSecOps.
DevOps
fromDevOps.com
5 months ago

Opus Security Platform Assigns DevSecOps Tasks to AI Agents - DevOps.com

Opus Security launches AI-driven vulnerability management platform to aid DevSecOps teams in identifying and remediating known vulnerabilities.
DevOps
fromDevOps.com
5 months ago

Why Has DevSecOps Failed? - DevOps.com

IT transformations unfold as long evolutions rather than rapid revolutions, highlighting the gradual progress organizations experience with concepts like DevOps and DevSecOps.
Information security
fromDevOps.com
7 months ago

OpenText Allies With Secure Code Warrior to Improve Application Security - DevOps.com

OpenText and Secure Code Warrior simplify learning for developers on DevSecOps best practices and streamline security training access.
fromDevOps.com
8 months ago

Microsoft Enlists Endor Labs to Integrate SCA Tool with CNAPP - DevOps.com

"...the decision to partner with Endor Labs to add an SCA tool to the Microsoft Cloud Defender platform was made because that approach provided deeper insights into the actual reachability of any vulnerability discovered..."
Information security
DevOps
fromAzure DevOps Blog
8 months ago

Getting the most out of Azure DevOps and GitHub - Azure DevOps Blog

Microsoft is integrating GitHub innovations into Azure DevOps to offer enhanced capabilities and security features for enterprise customers.
Artificial intelligence
fromITPro
9 months ago

DevSecOps teams are ramping up the use of AI coding tools, but they've got serious concerns - AI-generated code is causing major security headaches and slowing down development processes

AI is widely used in coding, but security concerns about generated code are significant among developers.
Investing in AI requires careful governance strategies to protect sensitive data.
Most organizations recognize challenges of AI but lack confidence in their security measures.
fromSecuritymagazine
10 months ago

Maximizing business benefits with robust hybrid cloud security

The evolution of containers and hybrid cloud technologies has democratized access to new applications, facilitating increased innovation and seamless collaboration within organizations. With 73% of enterprises adopting a hybrid cloud strategy, the move from on-premises to cloud is significant.
Information security
[ Load more ]