August 12, 2022

Researchers: GitHub Copilot produces vulnerable code, demos AI bias

GitHub updated guidance on using its Copilot AI-powered code bot after researchers showed at Black Hat that it often generates vulnerable code.
August 11, 2022

DevOps: Fix your dangerous redirects! Amex shows how

DevOps teams are still ignoring the danger of open redirector pages.
August 4, 2022

Post-quantum algo ‘SIKE’ dead: Did math geeks find key-encap back door?

Here’s more on NIST’s search for post-quantum cryptography: This week, is it in trouble?
July 28, 2022

Carbon aims to fix C++ memory safety (and other big flaws)

C++ sucks: It’s unsafe, unergonomic, has far too much legacy cruft and suffers from gatekeepers who won’t move with the times. Enter: Carbon.
July 26, 2022

5 best practices for modern DevSecOps

Here are five best practices that can help you deliver on the potential of DevSecOps to enable better security at the speed of today's software delivery.
July 21, 2022

AI ethics for DevOps: Diversity and ‘Kill All Humans’

AI has a big ethics problem—and it’s down to Dev and Ops to fix it.