DevSecOps
GitLab Extends Scope and Reach of Core CI/CD Platform
GitLab Inc. has updated its core continuous integration/continuous delivery (CI/CD) platform to natively provide more artificial intelligence (AI) capabilities, along with built-in software artifact management capabilities and more robust security tools ...
Minimus Unfurls Service for Accessing Secure Software Artifacts
Minimus today at the 2025 RSA Conference launched a managed service through which it ensures application development teams are provided access to a secure set of minimal container images and virtual machines ...
Harness Merges with Traceable to Provide Integrated DevSecOps Platform
Harness today announced that Traceable will be merged into the company to create a combined company that will further advance the adoption of best DevSecOps practices across the software development lifecycle (SDLC) ...
More Than 3,000 ‘Ghost’ Accounts Spreading Malware on GitHub
GitHub and similar open-source code and project repositories have become a common target of cybercriminals looking to lure developers into unknowingly downloading malicious scripts ...
CrowdStrike Software Update Sparks Microsoft Outage, Global Chaos
Airlines, hospitals, banks and other businesses were disrupted when a faulty software update knocked Windows users of their systems ...
An Overview of Continuous Security Testing Processes for DevSecOps
Just getting started with DevSecOps and need a primer for the tools and processes to employ? This should help ...
Lineaje Adds Module to Manage Open Source Software Security Lifecycle
This can help DevSecOps teams identify open source software projects that are not being well maintained ...
Snyk Adds Second ASPM Tool to Portfolio
Today, Snyk made available an edition of its application security posture management (ASPM) tool for assessing application risks that provides more context into how code has been written and its role within ...
OpenSSL Fiasco: What can DevOps Learn? | Elon Fires ‘50%’ of Twitter
Richi Jennings | | CVE-2022-3602, CVE-2022-3786, Elon Musk, If life were predictable it would cease to be life—and be without flavor, layoffs, OpenSSL, RCE, redundancy, security vulnerabilities, The Long View, twitterIn this week’s The Long View: The OpenSSL project has egg on its face, and half of Twitter’s staff are for the chop tomorrow ...
Meta Income Down by Half | Will Apple Make it Worse? | Linux Secure Boot Fix
Richi Jennings | | Apple, facebook, in-app purchase, initrd, iOS, Lennart Poettering, linux, Mark Zuckerberg, Meta, Metaverse, secure boot, systemd, The Long View, Your time is limited—so don’t waste it living someone else’s lifeIn this week’s The Long View: Meta’s latest results are very bad, Apple wants its cut of Facebook ads, and Lennart Poettering proposes improving Secure Boot for Linux ...
Kill the Password: Google on Board | 4-Day Week Proves Worthy
Richi Jennings | | 4-Day Work Week, FIDO, google, I am not bound to please thee with my answer, Passkeys, The Long View, WebAuthnIn this week’s The Long View: Passkeys is getting another big-tech supporter, and the four-day workweek train picks up speed ...
AWS re:Invent Roundup: Private 5G | Graviton3 ARM Chips | DevOps Guru++
Richi Jennings | | 5G, Adam Selipsky, Amazon, Amazon RDS, Amazon Web Services, ARM, AWS, DevOps Guru, OpenRAN Group, re:Invent, re:Invent 2021, The Long ViewIn this week’s The Long View: Three things that caught my eye from Amazon Web Services’ re:Invent conference. Private 5G, Graviton3 chips, and something called DevOps Guru for RDS (yes, really) ...
