Tag: security
Importance of Observability in the DevSecOps Pipeline: Enhancing Security, Compliance, and Collaboration
In today's rapidly developing software world, security cannot be an afterthought. DevSecOps, the integration of security practices into every phase of DevOps, requires continuous monitoring and actionable insights to detect and mitigate ...
Best of 2025: The DevOps Bottleneck: Why IaC Orchestration is the Missing Piece
If you work in DevOps, you’ve heard it a thousand times: “Do more with less.” More automation, more security, more reliability—but with the same (or fewer) people. Meanwhile, your development teams keep ...
Best of 2025: Five Trends That Will Drive Software Development in 2025Â
Brian Wald | | ai, devops, devsecops, embedded systems, GenAI, generative AI, IoT, security, software developmentIn 2025, developers will broaden the scope of how they use AI with promising new applications for reducing technical debt and improving security ...
AWS Transform Modernizes Any Codebase, App, API or Runtime
Adrian Bridgwater | | application development, automation, AWS, devops, open source, security, software developmentPlatforms, paradigms, processes and processing itself all evolve. Because the information technology industry crosses from one chasm to another on an apparently endless loop of perpetual change, applications and wider systems need ...
Your Next Secrets Leak is Hiding in AI Coding ToolsÂ
AI coding tools are accelerating secrets sprawl in Kubernetes workflows. Learn where leaks happen and how platform teams can contain the risk. ...
Securing the AI Era: How Development, Security, and Compliance Must Evolve
The Code Boom and Its Paradox We are witnessing an unprecedented shift in how software is built. With the rise of AI copilots, automated agents, and low-code platforms, code is being produced ...
Infrastructure as Code, Security Blind Spots, and the Messy Reality of DevOps
I’ve spent most of my career in infrastructure and reliability engineering, from years as an SRE at Google to leading teams at Facebook and now building Spacelift. Along the way, I’ve watched ...
Shai-Hulud Attacks Shake Software Supply Chain Security Confidence
Being the Dune groupie that I am, I couldn't pass up the chance to comment on the "Shai-Hulud" NPM attacks. What a clever name for a worm attack. But as the saying ...
The Right Kind of AI for Infrastructure as Code
AI is everywhere in cloud security right now. Nearly every product claims to be “AI-powered,” and copilots and chatbots promise to help teams interpret issues faster. But for most platform teams, understanding ...
Secure Code Warrior Defines Security Rules for AI Coding
Secure Code Warrior has made available a set of security rules for application developers using artificial intelligence (AI) tools to generate code. Company CTO Matias Madou said the AI Security Rules made ...
Why DevSecOps Isn’t a Thing Yet
One of the biggest obstacles to DevSecOps adoption is the cultural gap between development, security, and operations teams ...
JFrog Extends Alliance With NVIDIA to Secure AI Software Supply Chain
JFrog and NVIDIA today announced they have expanded the integrations between their software development platforms to now include the Enterprise AI Factory, a set of frameworks and blueprints for building artificial intelligence ...
