Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Kubernetes Quick Hits: Use SecurityContext to run containers with a read-only filesystem

Apr 22, 2021 By Snyk In Snyk
In this episode of our Kubernetes Quick Hits video series, Eric Smalling–Sr. In less than four minutes, you’ll learn how to use the readOnlyRootFilesystem control to keep your containers immutable and safe from modification by hackers and misbehaving code. Snyk helps software-driven businesses develop fast and stay secure. In addition to container security scans, Snyk can continuously monitor to find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.
View Video

Shifting security left while building a Cloud Native bank

Apr 22, 2021 By Snyk In Snyk
Building a digital bank requires a unique combination of agility and speed while maintaining the highest level of security. Lunar, a digital challenger bank in the Nordics, has always had technology and agility as a differentiator. Lunar was built for the cloud, with Cloud Native principles, such as microservices, containers, and container orchestration amongst others. In this presentation Kasper will present some insights into the principles on which the Lunar infrastructure was built on, the continuous focus on security, and how application security is shifting left and becoming a developer concern.
View Video
Snyk

Announcing the Snyk Team plan: Secure development for teams

Apr 21, 2021 By Daniel Berman In Snyk

Today we’re excited to announce a new product tier—Snyk Team—designed to help development teams empower themselves to build applications securely, together! No development team wants to write an application that gets hacked—but many don’t have the skills or budget to use the application security tools currently offered in the market.

Read Post
mend

Welcome to WhiteSource, Diffend!

Apr 20, 2021 By Rhys Arkins In Mend

Today we’re thrilled to announce that Diffend, an innovative software supply chain security service, is now part of WhiteSource. At WhiteSource we believe that open source risk management is a pillar of software supply chain security, and Diffend helps us extend our capabilities in this area. While 99.999% of open source releases may be safe, our customers trust us to help identify the ones that could do harm and should be avoided.

Read Post
Snyk

Snyk Maven plugin: Integrated security vulnerability scanning for developers

Apr 20, 2021 By Brian Vermeer In Snyk

Maven is the most commonly used build system in the Java ecosystem, and it has been for many years. Building your application with Maven is easy since it takes care of many things for you. In different phases of the Maven lifecycle, it handles things like: With Maven, the development lifecycle happens the same way on every machine for every developer on the team, as well as within the CI pipeline.

Read Post
armo

The K8s network (security) effect

Apr 20, 2021 By Amir Kaushansky In ARMO

Around 20 years ago I had the privilege of joining a young company that invented the Firewall – Check Point. I learned most of my networking knowledge and skills at Check Point and, at that time, I was involved in the high end, rapidly evolving internet. This might be the reason why I truly believe that network security must be a layer in the overall security strategy. A few years ago, I came back to Check Point as a cloud security product manager.

Read Post
Featured Post
outpost 24

4 ways Security and DevOps can collaborate to reduce application vulnerabilities

Apr 19, 2021 By Simon Roe In Outpost 24
Today's organisations are operating in a digital landscape filled with complexities and vulnerabilities. Increasingly, the applications and technologies businesses use to facilitate crucial business operations and connect people are at the mercy of cybercriminals - who are eager to attack from the shadows exploiting and stealing sensitive information held within these everyday applications. As such, security and DevOps teams need a collaborative approach to address and triage application vulnerabilities that continually present themselves - despite each team having different overall objectives.
Read Post
Snyk

Code Dx 5.3 integrates with Snyk for comprehensive vulnerability management

Apr 19, 2021 By Utsav Sanghani In Snyk

The Code Dx team is pleased to announce the general availability (GA) of Code Dx 5.3, which notably features an integration with Snyk to help customers integrate open source and container security into their continuous development processes. As we move toward a cloud native world, we’re working to ensure that developer-first tooling, secure cloud infrastructure, container security, and open source tools are fully integrated into Code Dx 5.3.

Read Post
veracode

DevSecOps in Practice: How to Embed Security into the DevOps Lifecycle

Apr 19, 2021 By Veracode In Veracode

You’ve heard of DevOps. And by now, you’ve probably also heard of DevSecOps, which extends DevOps principles into the realm of security. In DevSecOps, security breaks out of its “silo” and becomes a core part of the DevOps lifecycle. That, at least, is the theory behind DevSecOps. What’s often more challenging for developers to figure out is how to apply DevSecOps in practice. Which tools and processes actually operationalize DevSecOps?

Read Post

Copyright © 2026 OpsMatters™. All rights reserved.