Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

indusface

The Role of WAAP Platforms in the CI/CD Pipeline

May 8, 2023 By Phani Deepak Akella In Indusface
Most SaaS engineering teams use the CI/CD pipeline for software development. Since a CI/CD approach enables faster, more collaborative, and more efficient development processes, leading to higher-quality software. No wonder that this is popular. More frequent release cycles mean more opportunities for vulnerabilities to creep into the code. While DevOps teams are central to running a CI/CD pipeline, since application security is gaining importance, more engineering teams are adding DevSecOps teams.
Read Post

What are honey pots? Hacker explains why honey pots are so effective at catching security breaches

May 8, 2023 By GitGuardian In GitGuardian
Hacker Adriel Desautel explains why honey pots are such an effective tool to use against malicious threat actors. Adriel is a legendary personality in the security and hacking communities, today as the founder and CEO of Netraguard he, along with his team, conduct real world penetration tests on organizations of all sizes. This clip is part of an episode in The Security Repo Podcast where white hat hackers Noah Tongate and Adriel Desautel give real world advice on how to protect yourself against 'people like them'.
View Video

ChatGPT Data Breach Break Down

May 5, 2023 By GitGuardian In GitGuardian
OpenAi have confirmed they have had a data breach involving a vulnerability inside a open-source dependency Redis. This allowed threat actors to see history from other active users. But this leads to the bigger question, how can we secure ChatGPT. In this video I explain my position using some interesting data that ChatGPT should be part of all organizations threat landscape and that banning ChatGPT won't help the situation.
View Video
CloudCasa

Comparing Restic vs Kopia for Kubernetes Data Movement

May 4, 2023 By Martin Phan In CloudCasa

When we began developing CloudCasa, a Software as a Service (SaaS) platform, for protecting Kubernetes applications, we looked at the data protection landscape and focused on areas that we could improve upon and give back to the user community. We wanted to provide them with a quick and efficient way in which they could start protecting this infrastructure with minimal effort, overhead, and most importantly minimal cost.

Read Post
mend

A Guide to Standard SBOM Formats

May 4, 2023 By Jeff Martin In Mend

The software bill of materials (SBOM) has become an increasingly important tool for providing much-needed clarity about the components that make up software — both for application security purposes and governmental compliance. Unlike manual spreadsheets, SBOMs standardize everything into a particular format to minimize inconsistencies. There are three primary SBOM formats currently available, which allow companies to easily generate, share, and consume SBOM data.

Read Post
Spectral

A developer's guide to implementing Policy as Code

May 3, 2023 By Eyal Katz In Spectral

In 2022, the adoption of infrastructure as code (IaC) soared, with IaC domain specific languages like HCL, Shell and GoLang gaining popularity and momentum across the open source tools ecosystem. In fact, the rise of Policy as Code is the result of a new paradigm blurring the lines between IT, legal and R&D departments – everything as code. But what do developers have to do with compliance and infrastructure provisioning? What does PaC entail, and what types of PaC are there?

Read Post

TFiR Let's Talk! Recovery of Velero Backups to AKS & EKS

May 3, 2023 By CloudCasa In CloudCasa
Sebastian Glab, Cloud Architect at CloudCasa, shows you how CloudCasa for Velero allows Velero users to manage their cluster using our software as a service platform. By plugging directly into Velero, CloudCasa provides user friendly, intuitive UI for Kubernetes cluster management utilizing Velero as the backup tool. Users can centrally manage their current backups and configuration across multiple clusters and cloud providers (AKS, EKS and GKE) in one place. They don't have to jump across different environments, access different clusters to see what's going on, they can simply go to Cloud Casa, and manage everything from there.
View Video

Curating Open source Libraries on JFrog Platform, part II.

May 3, 2023 By JFrog In JFrog
Software supply chain security has been the most widely discussed topic for anyone who is writing applications utilizing the majority of open-source or third-party libraries. This webinar will showcase JFrog Platform's abilities to curate and compose workflows to help isolate libraries that have vulnerabilities and promote libraries to repositories that can be safely used. This webinar will also demonstrate self-service curation workflows.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.