By now, everyone has heard of the *AST scanning technologies. Most have been around for 15+ years, yet organizations are still struggling to eliminate AppSec issues like SQL injection and XSS vulnerabilities because these scanning tools look at vulnerabilities through a vulnerability lens, not a contextual risk lens ... Read More

As more organizations move to cloud-based application deployment and microservices architectures to scale their businesses, applications increasingly have become distributed. IT operations professionals and developers need more automated practices to maintain application availability and reduce the time and effort required to detect, debug and resolve operational issues ... Read More

Secure software delivery for modern applications requires security tooling that can be integrated neatly into the iterative DevOps model, automating security controls directly into the developer workflow to find and fix issues proactively, before those workloads reach production ... Read More

Everyone seems to be adopting low-code, but is it as customizable, secure and scalable as it needs to be for your organization to succeed? The low-code development market only began to take shape a decade ago but, as of last year, it accounted for 44% of software development activity. The ... Read More

Join our webinar to learn how JFrog and AWS can help you transform your DevOps and infrastructure to a more nimble and secure environment. In this webinar, you will gain insight on the strategies and best practices to help you overcome the challenges of legacy infrastructure and older application build ... Read More

As security researchers, we geek out whenever we uncover new vulnerabilities, and we take our responsibility as a CNA very seriously. Recently, we’ve noticed some unsettling trends. Even though the majority of open source projects share security issues publicly, a significant portion of vulnerabilities in multiple flagship products go unreported ... Read More

GitOps expands the use of DevOps best practices across the entire Kubernetes application life cycle, including deployment development/testing, infrastructure configuration and lifecycle management and resiliency. To enable this, administrators can configure and manage Red Hat OpenShift GitOps through ArgoCD. But regardless of whether your OpenShift clusters are hosted on-premises or ... Read More

The point of data governance is not data governance. At its core, a comprehensive data governance program aims to produce better business outcomes based on trusted data. To achieve this, a strong foundation of high-quality data is essential ... Read More

Enterprises are increasingly concerned with security. There is a need for clearer visibility over security threats, preventative measures to reduce vulnerabilities and reduced chances for exploits of software delivery and in production. This webinar will explain what continuous security is and why an enterprise continuous security dashboard is important ... Read More

Russ Eling and Alex Rybak started 2021 with insights into the trends ahead for open source governance, including the adoption of shift left, maturity of the software supply chain, the software bill of materials and the important role of developer training. Join Russ and Alex as they return to review ... Read More