Devsecops

Devsecops | News, how-tos, features, reviews, and videos

cloud computing / cloud network
Digital bugs amid binary code. [security threats / malware / breach / hack / attack]

A network of connected virtual container blocks.

Most reported CVEs for Docker Hub images are harmless

JFrog used Xray Container Contextual Analysis to scan the 200 most popular community images in Docker Hub, then tallied the results for the 10 most common CVEs. 78% were not exploitable.

teamwork / developers / programmers / collaboration / conversation, discussion, gesturing

Enterprises embrace devsecops practices against supply chain attacks

Healthy developer-team culture and adherence to devsecops best practices to protect against supply chain attacks are surprisingly commonplace in today’s security environment, according to a report from Google Cloud's DORA research...

broken chain metal link breach security

Security is hard and won’t get much easier

Software systems are complex, and development teams have conflicting goals. Oh, and people are imperfect.

nw speedometer speed measuring by geralt via pixabay linda perez johannessen via unsplash 2400x1600

7 devops practices to improve application performance

Devops is tough, but the choice between faster development and improving reliability shouldn't be. Consider shifting-left security, better observability, AIops platforms, and more.

conveyor production continuity distribution shipping

Are you ready to automate continuous deployment in CI/CD?

Making the leap from continuous delivery to continuous deployment requires the right skills, practices, and tools. Use this five-point checklist to prepare for launch.

apple augmented reality2

Only DevSecOps can save the metaverse

The vast metaverse will also be vast in terms of code, accelerating the demand for supply chain security, automated scanning and testing, and continuous updates.

programmer certification skills code devops glasses student by kevin unsplash

Progress launches Chef Cloud Security to extend DevSecOps to cloud-native assets

The software provider has also enhanced its underlying security and compliance mechanism Chef InSpec with new features.

integrated network

3 reasons devops must integrate agile and ITSM tools

Automation and integration are key for companies hoping to modernize dev, ops, and security workflows.

FireMon network security policy management

How to secure cloud infrastructure across the development lifecycle

Empowering cloud teams with automated policy-as-code guardrails helps them move faster and more securely.

blind spot side view mirror car vehicle

Security blind spots persist as companies cross-breed security with devops

As devops matures into devsecops, cultural obstacles continue to exert drag.

Tech Spotlight   >   Cybersecurity [CSO]   >   Hands cradle an abstract, virtual security matrix.

Cybersecurity in 2021: Stopping the madness

The challenges are greater than ever. But security pros have learned a lot – and with luck, the right strategic defenses can help even the highest-value targets withstand severe attacks.

Tech Spotlight   >   Cybersecurity [IFW]   >   Hands at a keyboard with binary code on the display.

6 security risks in software development and how to address them

Experts share how software development teams can ‘shift security left’ and improve governance of open source usage, software deployment, and data management.

head / face / radiating lines / radial waves / artificial intelligence / projection / connection

AI, machine learning, and deep learning deep dive

Download this 26-page in-depth guide to AI, machine learning, and deep learning for easy reading at your convenience

Get started with Angular

A step-by-step guide to installing the tools, creating an application, and getting up to speed with Angular components, directives, services, and routers

Python megaguide: The best frameworks and IDEs

Only on InfoWorld: A hands-on, in-depth look at 13 Python web frameworks and six Python development toolkits

Quick guide: Digital transformation and the agile enterprise

Enterprise transformation is hard. But when you build a platform for continuous change, putting new ideas into production becomes a lot easier

Career hacks: Professional do’s and don’ts for developers

The hot skills to master, the secrets to breaking into management, the career mistakes to avoid -- here's how to refactor yourself as the developer every organization wants

ifw dd office 365

Deep Dive how-to: Office 365 document sharing

Office 2016, OneDrive, and Office 365 together offer powerful document collaboration capabilities across Windows, MacOS, iOS, Android, and the web -- but only if you set them up and manage them properly. This how-to guide walks you...

Load More