Blog | ReversingLabs | Dev & DevSecOps

July 10, 2024

The state of DevSecOps: Why upgrading your AppSec tooling is essential

Here's what's holding DevSecOps back — and why modernizing your application security tooling is critical in the software supply chain security era.

May 8, 2024

CI/CD pipelines and the cloud: Are your development secrets at risk?

Combined with cloud service providers' CLIs, continuous delivery/continuous integration can pose a threat. Here's why — and how to keep a lid on secrets.

March 21, 2024

Memory-safe languages and security by design: Key insights, lessons learned

Memory safety is one of the most stubborn and dangerous software weaknesses. Here are key insights and takeaways from a new Google report on the issue.

March 5, 2024

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

The National Institute of Standards and Technology has beefed up its guidelines for securing CI/CD environments. Are you ready to bulk up your program?

February 28, 2024

Secure your AI development tools: 4 key questions to ask

When using AI tools including GitHub Copilot, your security team must be aware of — and protect against — certain risks. Here are the top considerations.

January 3, 2024

The state of container security: 5 key steps to locking down your releases

Here are best practices — and recommendations for tooling — to modernize your software supply chain security approach.

November 14, 2023

8 CI/CD security best practices: Protect your software pipeline

Here are eight best practices for hardening CI/CD build environments and baking security into the software pipeline.

October 19, 2023

Rust on Android goes bare metal: 3 key security benefits

Using Rust in bare-metal applications will make Android a safer platform — and have a broader impact on the Rust community. Here are three key takeaways.

October 12, 2023

The evolution of AppSec: Getting off the hamster wheel remains elusive

Experts say scan-and-fix will remain for some time. But application security tools are evolving to provide prioritization and automation.

October 5, 2023

The state of open source software security: Changes in attack methods, policy and more

What’s ahead for open source software security? ConversingLabs caught up with Mikaël Barbero of the Eclipse Foundation to answer that question.

September 20, 2023

The art of security chaos engineering

What if dev and app sec teams showed the same nimbleness and ruthless efficiency as cybercriminals? Fastly's Kelly Shortridge explains why it's essential.

September 12, 2023

SANS DevSecOps report: 5 key takeaways

"Shift left" is giving way to up-front risk assessments, and companies are tapping external support for third-party compliance. Learn from app sec peers.

Software Supply Chain Security

File Security

Security Operations

Products

Technology

Partners

Alliances

Resources

Company

Events

Press

Dev & DevSecOps

The state of DevSecOps: Why upgrading your AppSec tooling is essential

CI/CD pipelines and the cloud: Are your development secrets at risk?

Memory-safe languages and security by design: Key insights, lessons learned

NIST updates supply chain guidance: 3 ways to pump up your CI/CD security

Secure your AI development tools: 4 key questions to ask

The state of container security: 5 key steps to locking down your releases

8 CI/CD security best practices: Protect your software pipeline

Rust on Android goes bare metal: 3 key security benefits

The evolution of AppSec: Getting off the hamster wheel remains elusive

The state of open source software security: Changes in attack methods, policy and more

The art of security chaos engineering

SANS DevSecOps report: 5 key takeaways

Topics

Special Reports

The State of Software Supply Chain Security 2024

Upcoming Webinars

ConversingLabs

Dev & DevSecOps

Topics

Follow us

Subscribe

Special Reports