DevSecOps
Harness Merges with Traceable to Provide Integrated DevSecOps Platform
Harness today announced that Traceable will be merged into the company to create a combined company that will further advance the adoption of best DevSecOps practices across the software development lifecycle (SDLC) ...
More Than 3,000 ‘Ghost’ Accounts Spreading Malware on GitHub
GitHub and similar open-source code and project repositories have become a common target of cybercriminals looking to lure developers into unknowingly downloading malicious scripts ...
CrowdStrike Software Update Sparks Microsoft Outage, Global Chaos
Airlines, hospitals, banks and other businesses were disrupted when a faulty software update knocked Windows users of their systems ...
An Overview of Continuous Security Testing Processes for DevSecOps
Just getting started with DevSecOps and need a primer for the tools and processes to employ? This should help ...
Lineaje Adds Module to Manage Open Source Software Security Lifecycle
This can help DevSecOps teams identify open source software projects that are not being well maintained ...
Snyk Adds Second ASPM Tool to Portfolio
Today, Snyk made available an edition of its application security posture management (ASPM) tool for assessing application risks that provides more context into how code has been written and its role within ...
OpenSSL Fiasco: What can DevOps Learn? | Elon Fires ‘50%’ of Twitter
Richi Jennings | | CVE-2022-3602, CVE-2022-3786, Elon Musk, If life were predictable it would cease to be life—and be without flavor, layoffs, OpenSSL, RCE, redundancy, security vulnerabilities, The Long View, twitterIn this week’s The Long View: The OpenSSL project has egg on its face, and half of Twitter’s staff are for the chop tomorrow ...
Meta Income Down by Half | Will Apple Make it Worse? | Linux Secure Boot Fix
Richi Jennings | | Apple, facebook, in-app purchase, initrd, iOS, Lennart Poettering, linux, Mark Zuckerberg, Meta, Metaverse, secure boot, systemd, The Long View, Your time is limited—so don’t waste it living someone else’s lifeIn this week’s The Long View: Meta’s latest results are very bad, Apple wants its cut of Facebook ads, and Lennart Poettering proposes improving Secure Boot for Linux ...
Kill the Password: Google on Board | 4-Day Week Proves Worthy
Richi Jennings | | 4-Day Work Week, FIDO, google, I am not bound to please thee with my answer, Passkeys, The Long View, WebAuthnIn this week’s The Long View: Passkeys is getting another big-tech supporter, and the four-day workweek train picks up speed ...
AWS re:Invent Roundup: Private 5G | Graviton3 ARM Chips | DevOps Guru++
Richi Jennings | | 5G, Adam Selipsky, Amazon, Amazon RDS, Amazon Web Services, ARM, AWS, DevOps Guru, OpenRAN Group, re:Invent, re:Invent 2021, The Long ViewIn this week’s The Long View: Three things that caught my eye from Amazon Web Services’ re:Invent conference. Private 5G, Graviton3 chips, and something called DevOps Guru for RDS (yes, really) ...
Securing Your Software Development Pipelines
Earlier this year, it was announced that the attack on IT management software provider SolarWinds had been used to compromise other organizations, including parts of the United States government. There were several ...
DevOps Chat: Maximizing the Benefits of DevSecOps
When discussing security in DevOps, we often focus on the security tools instead of the DevSecOps process itself. In this DevOps Chat, ZeroNorth CEO John Worrall takes us to the root of ...
