Satish Yerram - CI/CD Pipelines Aren’t Enough: Why Enterprises Need An Identity Led DevSecOps Model

This paradigm shift has been led by Satish Yerram, who has transformed monolithic DevSecOps models into identity anchored pipelines that incorporate rigorous auditing, policy as code, secret ...
NetNewsLedger

Speed Without Risk: How Modern CI/CD Pipelines Are Redefining Enterprise Software Delivery

Enterprise software delivery evolves because businesses see a rise in the release of updates with increased expectations. Speed, by itself, is not sufficient, especially when dealing with large ...
Dark Reading

GitLab Sends Users Scrambling Again With New CI/CD Pipeline Takeover Vuln

For the second time in less than a month GitLab has users scrambling to address a critical vulnerability in the community and enterprise editions of its DevOps ...
Visual Studio Magazine

Hardening CI/CD: Essential Strategies to Mitigate Security Risks

As DevOps practices mature and Continuous Integration/Continuous Deployment (CI/CD) pipelines become more deeply embedded in the software delivery lifecycle, the ...
Bleeping Computer

GitLab warns of critical arbitrary branch pipeline execution flaw

GitLab has released security updates to address multiple flaws in Community Edition (CE) and Enterprise Edition (EE), including a critical arbitrary branch pipeline execution flaw. The vulnerability, ...
InfoQ

Delivering Software Securely: Techniques for Building a Resilient and Secure Code Pipeline

A monthly overview of things you need to know as an architect or aspiring architect. Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with ...