Image

Sign up for our newsletter!
Stay informed on the latest DevOps news

DevOps.com

Tag: secure coding

security, into DevSecOps, AI, DEVSECOPS, CodeOps, DevSecOps, GenAI, security, DevSecOps GitGuardian WhiteSource Automating Security

Surprise! Everybody Uses AI Tools for Software Development, Few Do So Securely 

| | AI security, AI-generated code, appsec, code security automation, Dependency Management, devsecops, SBoM, secure coding, software supply chain risk
AI is generating code faster than teams can secure it, widening software supply chain risk and exposing major gaps in AppSec and governance ...
Instabug, mobile applications, web application, attacks, APIs, RWD application Standardization

5 Pillars of Successful Web App Development

| | app development best practices, app performance, cloud hosting, cross-platform compatibility, custom web apps, devops, digital transformation, Enterprise software, Itransition, microservices, responsive design, scalability, secure coding, software development, user-centric design, UX design, web app development, web architecture, web security
Today, building a high-quality and competitive web application requires more than just clean code, a user-friendly UX and good development practices. The success of such a project also hinges on creating a strategic approach and prioritizing components ...
PagerDuty, Harness, Qwiet, HashiCorp, Harness, Kong, API, sentry, Wiz, Veracode, ASPM,

Sonar Previews Service to Improve Quality of AI Generated Code

| | AI code quality, AI code review, AI code security, AI model training, AI-generated code, bug reduction, code vulnerabilities, cybersecurity in AI, devsecops, Large Language Models, reinforcement learning, secure coding, software development, Sonar platform, SonarSweep
Sonar’s SonarSweep improves AI-generated code by reducing bugs and vulnerabilities, helping organizations train more reliable AI models ...
Secure By Design, Secure by Default 

Secure By Design, Secure by Default 

| | adaptive security, continuous improvement, continuous security, cyber resilience, devops, devops best practices, devsecops, dynamic systems, embedded security, enterprise compliance, incident response, modern software delivery, production monitoring, real-time security, secure by default, secure coding, secure-by-design, security governance, security in production, security strategy, security theatre, shift left security, software security, static analysis, threat modeling
“Shift left” alone won’t secure software. Real security must be embedded continuously across design, development, and production—not just moved earlier ...
Coding at the Speed of AI: Innovation, Vulnerability, and the GenAI Paradox 

Coding at the Speed of AI: Innovation, Vulnerability, and the GenAI Paradox 

| | AI code review, AI Governance, AI hallucinations, AI in DevOps, AI in software development, AI security best practices, AI-generated code vulnerabilities, ChatGPT, cross-site scripting, developer training, devsecops, EU AI Act, GenAI security risks, generative AI, GitHub Copilot, hardcoded credentials, insecure deserialization, Log4Shell AI reproduction, Replit Ghostwriter, secure coding, U.S. Executive Order 14110
Generative AI accelerates software delivery but also reintroduces vulnerabilities, making secure coding practices, oversight, and developer training essential for safe adoption ...
Greylog Hasura API Apollo GraphQL oneAPI

Graylog Makes Free API Security Tool Available to Developers

| | API security, APIs, application security, devsecops, Greylog, secure coding
A free version of Graylog's API security platform is intended to encourage developers to adopt best practices to secure APIs ...
Snyk DigiCert ReversingLabs vulnerabilities supply chain

Snyk Survey: AI Generating More Vulnerabilities in Code

| | appsec, artificial intelligence, generative AI, secure coding, Snyk, software security
A Snyk survey finds the use of artificial intelligence (AI) to write code is creating a software security paradox ...
DevOps Security: Your Complete Checklist

DevOps Security: Your Complete Checklist

| | application development, checklist, devops, devsecops, secure coding, security, Software Supply Chain
In a fast-paced environment like DevOps, your security strategy needs to be even more agile. While moving fast is great for delivering application features and functionality, speed shouldn't come at the cost ...
GitGuardian Survey Surfaces Secrets Management Challenges

GitGuardian Survey Surfaces Secrets Management Challenges

| | application security, GitGuardian, Secrets, secrets management, secure coding
A survey of 507 IT decision-makers in the U.S. and the United Kingdom published today found 75% of respondents said a secret leaked from at least one application, with 60% noting that ...
Codenotary Previews Secure SBOM Creation Service

Codenotary Previews Secure SBOM Creation Service

| | Codenotary, devsecops, IT security, secure coding
Codenotary today made available a preview of a centralized repository service for generating and storing software bills of materials (SBOMs) that makes it simpler to securely share them as necessary. Moshe Bar, ...
Workflows, DevOps, AI, DevOps workflows, code Postman Dynatrace GitLab value Argo Atlassian database Sqlcommenter flow metrics VSM low-code PostgreSQL database JSON

Cycode Adds ASOC Module to Streamline DevSecOps Workflows

| | alerts, application security, Cycode, devsecops, secure coding, workflows
Cycode has added a module to its platform for mapping metadata and events using graph technology that makes it simpler for application development and cybersecurity to consolidate alerts generated by their DevSevOps ...
AI-based, software development, ai, code generation, repositories, GitHub, Arm, extension, GitHub, Copilot, Git, bloat, malicious, GitLab, memory-safe, CISA, agency, Skillsoft GitHub GitKraken code QA

5 Unusual Ways to Improve Code Quality

| | bug bounty, code quality, coding, QA, secure coding
Code quality refers to how well-written and maintainable software code is. It encompasses factors such as readability, efficiency, scalability, reliability, maintainability and security. High code quality ensures that software is easy to ...
Show More