Mix, but do not shake. How we added Sec between Dev and Ops
Hello, tekkix! My name is Natali Dubotolkova, I am a senior secure software development engineer at Basis. I want to talk about how we thought about integrating the work…
Articles about you "devsecops"
Explore various aspects of the topic "devsecops" with our articles. We have gathered only the most interesting and relevant resources for you.
Attacks on GitHub developer in 2024
The "Platform Engineering" trend proposed by analytical agencies has become interesting not only to companies that transform their processes, teams, and tools according…
IaC and DevSecOps: choosing the best tools for infrastructure code analysis and protection
Hello, readers! Anastasia Berezovskaya, an application development security engineer at Swordfish Security, is with you. Today we will once again talk about the features…
How to hunt security professionals
In the life of every HR, sooner or later, HE appears... Security professional! And how to approach hunting people for this position is usually unclear.
Software Supply Chain Security. Building processes with OSS
Hello, tekkix! We are talking about one of the options for using Open Source tools for Software Supply Chain Security. Colleagues in the field asked to post a small overview…
Built-in security mechanisms of Python frameworks
When conducting software development process audits, we often hear that functionality is implemented in the framework, and this may raise questions from security personnel.
Kubernetes Secrets Management with Sealed Secrets and Helm: GitOps way
In this article, we will look at how to organize simple secrets management for applications in Kubernetes using the GitOps approach. We store secrets in git securely…
