Tag: devsecops
Best of 2025: GitLab Extends Scope and Reach of Core CI/CD Platform
GitLab Inc. has updated its core continuous integration/continuous delivery (CI/CD) platform to natively provide more artificial intelligence (AI) capabilities, along with built-in software artifact management capabilities and more robust security tools ...
Best of 2025: Five Trends That Will Drive Software Development in 2025
Brian Wald | | ai, devops, devsecops, embedded systems, GenAI, generative AI, IoT, security, software developmentIn 2025, developers will broaden the scope of how they use AI with promising new applications for reducing technical debt and improving security ...
Surprise! Everybody Uses AI Tools for Software Development, Few Do So Securely
Teri Robinson | | AI security, AI-generated code, appsec, code security automation, Dependency Management, devsecops, SBoM, secure coding, software supply chain riskAI is generating code faster than teams can secure it, widening software supply chain risk and exposing major gaps in AppSec and governance ...
Checkmarx Acquisition of Tromzo Accelerates Plan to Apply AI to Application Security
Mike Vizard | | AI agents, AI in cybersecurity, AI-powered security, application security, Application Security Posture Management, ASPM, DAST, devsecops, devsecops automation, SAST, SCA, SDLC security, secure software development lifecycle, Software Supply Chain Security, zero-day vulnerabilitiesCheckmarx accelerates its AI-driven DevSecOps strategy after acquiring Tromzo, integrating AI agents to automate application security across the software development lifecycle ...
DevOps for GenAI Toronto Edition Hackathon: Unlocking New Opportunities
This week in Toronto, at the DevOps for GenAI Hackathon, something remarkable occurred: Industry professionals, academic leaders and learners representing top academic institutions, fintech, technology firms, and consulting companies came together in ...
Why Privacy-Safe Logging Remains One of the Hardest Problems in DevOps
Vignesh Sundaram | | alert fatigue, cloud-native security, devsecops, observability, PII redaction, privacy-safe loggingAs cloud-native architectures scale and regulatory pressure intensifies, organizations are finally recognizing that their logging pipelines contain sensitive. Logs fuel observability, debugging, compliance investigations, and incident response, yet they also remain one ...
It’s Time to Rethink Access Control for Modern Development Environments
As development environments evolve at breakneck speed, our approach to securing them remains stuck in the past. I've watched countless organizations implement robust Identity and Access Management (IAM) solutions, deploy Identity Governance ...
How Open Source Tools Simplify DevOps for Startups
Durojaye Olusegun | | CI/CD, configuration drift, developer productivity tools, devops tools, devsecops, open source, SnapStartIn recent years, software development has made big strides. Tools like GitHub Copilot, ChatGPT, and other AI helpers have given developers the power to churn out code, tests, and documentation faster than ...
What I’m Thankful for in DevOps This Year: Living Through Interesting Times
Alan Shimel | | agentic AI, AI in DevOps, automation in DevOps, burnout in engineering, complexity in DevOps, compliance challenges, developer experience, devops, devops culture, DevOps gratitude, DevOps inclusivity, devsecops, generative AI, hybrid work, incident response, innovation pace, internal developer platforms, machine learning workflows, open source community, platform engineering, regulatory landscape, Remote DevOps, SBoM, secure supply chain, security by design, security theater, self-service pipelines, shift left security, talent crunch, tech layoffs, Tool SprawlAlan reflects on a chaotic yet inspiring year in DevOps, highlighting the rise of AI in engineering, the maturation of DevSecOps, the evolution of hybrid work culture, the surge of platform engineering ...
The Future of DevOps Still Has a Pulse
Anshul Sharma | | agentic DevOps, AI (Artificial Intelligence), AI Governance, AI infrastructure, devsecops, kubernetesOver the last few years, we have watched our industry get swept up in the promise of AI agents. The pitch is compelling: tell a system “Deploy this workflow and roll back ...
What Fuels AI Code Risks and How DevSecOps Can Secure Pipelines
Nitin Garg | | AI code risks, AI code security, devsecops, SBoM, secure pipeline, zero-trust securityModern development teams are under constant pressure to deliver fast, innovate continuously, and stay clear of security threats; all at the same time. Every new feature, every accelerated release, carries the hidden ...
How to Escape the Talent Valley
Dustin Lehr | | ai, AI Governance, AI in software development, application security, developer careers, devsecopsAcross the tech industry a disconcerting trend is emerging, job losses at the hand of a seemingly more efficient and cost-effective employee, artificial intelligence (AI). Software developers in particular have felt the ...
