November 21, 2022

4 ways GitOps can help secure your software pipeline

GitOps can help control configuration drift and enable your infrastructure security to shift left, for starters. Here are four ways it can enable better software security.
November 16, 2022

Track this: Apple, Google hit with BIG privacy law claims

Google has lost a long standing privacy case. And now Apple faces a big ol’ privacy class action. In this week’s Secure Software Blogwatch, we navigate the minefield.
November 9, 2022

Dropbox reveals hack: What DevOps can learn from it

Dropbox was recently hacked. So what can your DevOps team learn from it? For one, not all MFA schemes are created equal.
November 8, 2022

SBOMs in the SaaS era: 5 reasons why you should consider a SaaSBOM

Here's why your organization should consider a SaaSBOM, as well as the essential challenges facing their implementation.
November 2, 2022

Reflection attacks: Don’t be part of the problem

Once again, Microsoft shows devs what NOT to do.
November 1, 2022

National Cyber Director: Higher bar for software supply chain security is key to cyber resilience

National Cyber Director Chris Inglis said the government is setting a new bar for supply chain security as the focus shifts from response to resilience.