Sign up for our newsletter!
Stay informed on the latest DevOps news

staging-devopsy.kinsta.cloud

Tag: CI/CD pipeline security

software, LLMs, engineering, Aigment Code, code, CrowdStrike, windows, Microsoft system outage crash software update

The MLSecOps Era: Why DevOps Teams Must Care about Prompt Security 

| | AI attack surface, AI chaos testing, AI Governance, AI supply chain risk, autonomous agent security., CI/CD pipeline security, CodeShield, DevOps AI, ISO 42001, LlamaFirewall, LLM security, MLSecOps, model drift, NIST AI RMF, prompt injection, prompt validation, PromptGuard, PromptOps, RBAC for AI, red team AI, runtime monitoring, secure AI pipelines
AI-driven software delivery introduces new risks, especially prompt manipulation within CI/CD workflows. This article details the emerging fields of PromptOps and MLSecOps and offers practical strategies for securing prompts, models, and pipelines ...
DevSecOps, security, DevOps

DevSecOps in Practice: Closing the Gap Between Development Speed and Security Assurance

| | application security automation, automated vulnerability scanning, CI/CD pipeline security, cloud and container security, continuous feedback loops, continuous security integration, developer security mindset, development speed and security balance, devsecops, DevSecOps best practices, risk-based security, SaferNet VPN, Secure DevOps, secure software development, security as code, security automation tools, security champions, security culture, shift left security, Software Supply Chain Security
In the world of modern software development, speed is king. Teams are under constant pressure to release features, fix bugs and stay ahead of competitors. Yet, as development velocity increases, so does ...
quantum, computing,

How to Integrate Quantum-Safe Security into Your DevOps Workflow

| | CI/CD pipeline security, Cloud Security, crypto-agility, cybersecurity modernization, devops security, devsecops, encryption protocols, future-proof DevOps, hybrid encryption, legacy to quantum-safe migration, post-quantum cryptography, quantum computing, quantum cybersecurity, quantum key distribution, quantum risk mitigation, quantum threats in DevOps, quantum-resistant algorithms, quantum-safe automation, quantum-safe CI/CD, quantum-safe encryption, secure DevOps workflows
The rapid pace at which quantum computing is evolving is unprecedented, which is both good and bad news. While quantum computers can help solve complex problems at unimaginable speeds, they can also ...
Common IaC Security Issues and How to Fix Them

Common IaC Security Issues and How to Fix Them

| | audit logging, automated compliance, CI/CD pipeline security, cloud infrastructure, cloud misconfiguration, cloud security incidents, CloudFormation, configuration drift, devsecops, drift detection, hardcoded secrets, IaC automation, IaC best practices, IaC governance, IaC security, IaC vulnerabilities, infrastructure as code, least privilege access, policy as code, secrets management
Learn the top five Infrastructure as Code (IaC) security vulnerabilities, their fixes, and best practices to prevent misconfigurations, drifts, and breaches ...
cracks, devops, tooling, platform, engineers

Outages and Security Threats in DevOps Tooling: Cracks in the Foundation

| | AI-native workflows, CI/CD pipeline security, cloud-native pipelines, DevOps breaches, DevOps outages, DevOps resilience, GitHub outages, Jira vulnerabilities, platform engineering, secure delivery, Software Supply Chain
Alan warns that DevOps toolchains — from GitHub to Jira — are showing cracks, with outages and breaches threatening delivery resilience. He urges platform engineers to design for failure, harden security, and ...
AI, AI-powered, DevSecOps, zero-trust, Mobb Checkmarx DevSecOps security

AI-Powered DevSecOps: Navigating Automation, Risk and Compliance in a Zero-Trust World

| | AI in DevOps, CI/CD pipeline security, cloud security best practices, continuous compliance, DevOps compliance, FedRAMP DevOps, GRC automation, microservices security, NIST compliance, security automation
Breaking down how artificial intelligence (AI) is reshaping DevSecOps, the security pitfalls that come with it and how to balance the raw efficiency of automation with the actual realities of risk mitigation ...
Breaking Free from Ransomware: Securing Your CI/CD Against RaaS

Breaking Free from Ransomware: Securing Your CI/CD Against RaaS

| | CI/CD pipeline security, devsecops, Ransomware-as-a-Service
For developers, few things are more precious than their codebase. Yet, a chilling trend is emerging: Ransomware-as-a-service (RaaS) attacks targeting CI/CD pipelines, holding valuable code hostage ...