GitLab 15 Upgrades Address Security, Observability, DataOps
At last week’s KubeCon + Cloud Native Con, EU, speakers explored two paths for the growing adoption of cloud native technologies: a …
CI/CD
Cider Security raises $38M to secure software development environments
Tiger Global led the Series A investment. Cider Security will use its newly raised funding to accelerate its engineering efforts and …
The New Stack’s Top Podcasts for 2021
Our listeners have spoken: The New Stack’s most popular podcasts for 2021 were about security — particularly ransomware — and how to …
Orion: Go Beyond Package Manager Discovery for Your SBOM
Security and integrity of the software supply chain is one of the fundamental requirements in the overall assessment of cybersecurity. The …
Moving to the Cloud Presents New Use Cases for Feature Flags
While not a new concept — the oldest blog post I can find about successfully using feature flags is from Flickr and now more than a …
Secure deployments with OpenID Connect & GitHub Actions now generally available
Continuous delivery workflows in GitHub Actions can deploy software, create and update cloud infrastructure, and use other services in a …
Managing User Access in Multiregion Deployments
Modern businesses need to win customers across multiple regions in order to grow and maximize their market opportunities. This results in …
Google Introduces ClusterFuzzLite Security Tool for CI/CD
Have you noticed we’re taking coding security more seriously these days? I …
CyberRes delivers on product strategy for DevSecOps with CI/CD integrations
CyberRes, a Micro Focus line of business, has released Fortify Scan pipe and FortifyToolsInstaller, now enabling developers to install …
Security microservices, configuration and observability take the stage at KubeCon NA 2021
That open-source, hybrid cloud is maturing was foremost on the agenda at the recently concluded KubeCon + CloudNativeCon NA event. Notably …
Zero Trust Security and the Software Development Lifecycle
Automation has been around for decades in various forms, and it’s only now that we’re starting to see its full potential. Automating …
How GitOps Benefits from Security-as-Code
Security-as-code is the practice of “building security into DevOps tools and workflows by mapping out how changes to code and …
Cloud Misconfiguration: Vulnerability Hiding in Plain Sight
In today’s technology-driven landscape, most companies have at least some, if not all, workloads on the cloud. And unlike on-premises …
Give Jenkins a Software Bill of Materials with Syft
Since the U.S. White House released its Cybersecurity Executive Order earlier this year, calling on government agencies to improve their …