Tag: Continuous Integration
-
CloudBees flaws in Jenkins server can lead to code execution
CloudBees vulnerabilities in the Jenkins open-source automation server can be exploited to achieve code execution on targeted systems. …
-
Jenkins Security Alert: New Security Flaws Could Allow Code Execution Attacks
A pair of severe security vulnerabilities have been disclosed in the Jenkins open source automation server that could lead to code …
-
Article: The Importance of Pipeline Quality Gates and How to Implement Them
A quality gate is an enforced measure built into your pipeline that the software needs to meet before it can proceed to the next step. This …
-
GitLab Releases Single-Tenant SaaS Offering for Strict Security and Compliance
GitLab have released a new product – GitLab Dedicated – for customers in industries with strict security and compliance requirements …
-
Edward Hudson named CISO at the University of Kansas
Hudson brings 20 years of IT security and IT governance experience to the role. He previously worked as the CISO for the California State …
-
Why shift left is burdening your dev teams
Security and compliance challenges are a significant barrier to most organizations’ innovation strategies, according to CloudBees. The …
-
GitLab 15 Improves Editing, Metrics, Container Scanning, Security and More
With the recent release of GitLab version 15.2, open-core company GitLab Inc. has announced a series of improvements, including an enhanced …
-
Jenkins warns of security holes in these 25 plugins
Jenkins, an open-source automation server for continuous integration and delivery (CI/CD), has published 34 security advisories covering 25 …
-
7 DevSecOps myths and how to overcome them
DevOps and security teams have long been at odds with each other over the software delivery pipeline. DevOps teams have historically viewed …
-
GitHub Enterprise Server 3.5 Improves Security, Updates GitHub Actions, and More
The latest release of GitHub Enterprise Server brings many new features with a special emphasis on security and compliance, says GitHub, …
-
Application security testing startup StackHawk raises $20.7M
Application security testing startup StackHawk Inc. said today it has raised $20.7 million in new funding for product development and …
-
Veracode Report Shows Signs of Progress in Securing Software Supply Chain
Veracode’s recently released State of Software Security report found a general decline in the number of known security vulnerabilities …
●●●