CICD

Assessing the Efficacy of Application Security in the Age of CI/CD

Nov 22, 2024 by iHash Leave a Comment

But application security is a tricky process to navigate for many DevOps and DevSecOps teams. Today’s applications are constantly evolving with new features and updates, continuously introducing the possibility of vulnerabilities and misconfigurations that could heighten risk. Further, organizations navigating the transition from DevOps to DevSecOps may lack the metrics needed … [Read more...] about Assessing the Efficacy of Application Security in the Age of CI/CD

GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others

Jun 28, 2024 by iHash Leave a Comment

Jun 28, 2024NewsroomSoftware Security / DevOps GitLab has released security updates to address 14 security flaws, including one critical vulnerability that could be exploited to run continuous integration and continuous deployment (CI/CD) pipelines as any user. The weaknesses, which affect GitLab Community Edition (CE) and Enterprise Edition (EE), have been addressed in … [Read more...] about GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others

Enhancing CDR Capabilities for CI/CD Pipeline

Mar 22, 2024 by iHash Leave a Comment

The increase in cloud adoption has been met with a corresponding rise in cybersecurity threats. Cloud intrusions escalated by a staggering 75% in 2023, with cloud-conscious cases increasing by 110%. Amid this surge, eCrime adversaries have become the top threat actors targeting the cloud, accounting for 84% of adversary-attributed cloud-conscious intrusions. For large … [Read more...] about Enhancing CDR Capabilities for CI/CD Pipeline

TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

Jan 18, 2024 by iHash Leave a Comment

Jan 18, 2024NewsroomSupply Chain Attacks / AI Security Continuous integration and continuous delivery (CI/CD) misconfigurations discovered in the open-source TensorFlow machine learning framework could have been exploited to orchestrate supply chain attacks. The misconfigurations could be abused by an attacker to "conduct a supply chain compromise of TensorFlow releases on … [Read more...] about TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

Continuous Observability: Shedding Light on CI/CD Pipelines

Jul 27, 2023 by iHash Leave a Comment

DevOps is not just about operating software in production, but also releasing that software to production. Well-functioning continuous integration/continuous delivery (CI/CD) pipelines are critical for the business, and this calls for quality observability to ensure that Lead Time for Changes is kept short and that broken and flaky pipelines are quickly identified and … [Read more...] about Continuous Observability: Shedding Light on CI/CD Pipelines

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

Assessing the Efficacy of Application Security in the Age of CI/CD

GitLab Releases Patch for Critical CI/CD Pipeline Vulnerability and 13 Others

Enhancing CDR Capabilities for CI/CD Pipeline

TensorFlow CI/CD Flaw Exposed Supply Chain to Poisoning Attacks

Continuous Observability: Shedding Light on CI/CD Pipelines