Collaborate Disseminate
Learn more about modern application security programs, DevOps, and CI/CD, and how to integrate static analysis into your DevSecOps pipeline.
The post [Webinars] Modern application security programs, SAST in DevSecOps appeared first on Software Integri… Continue reading [Webinars] Modern application security programs, SAST in DevSecOps
Want DevSecOps? Here are some tips to get your development, security, and operations teams communicating effectively and working toward a single purpose.
The post DevSecOps success takes people, not just technology appeared first on Software Integrity… Continue reading DevSecOps success takes people, not just technology
IAST, a new generation of application security testing that bridges the gaps between SAST, DAST, and pen testing, seems to have been made for DevSecOps.
The post How does IAST fit into DevSecOps? appeared first on Software Integrity Blog.
The post How… Continue reading How does IAST fit into DevSecOps?
Organizations that postpone remediating security issues, or just ignore them, are playing a risky game. But DevSecOps can help reduce your security debt.
The post Start paying down your ‘security debt’ with DevSecOps appeared first on Soft… Continue reading Start paying down your ‘security debt’ with DevSecOps
GitHub Actions brings the platform into the CI/CD market, making it simple to integrate SAST and SCA into workflows with the Synopsys Detect GitHub Action.
The post Synopsys adds GitHub Action for SAST and SCA appeared first on Software Integrity Blog… Continue reading Synopsys adds GitHub Action for SAST and SCA
Learn more about DevSecOps best practices, application security tools and features, and key legal developments related to open source in 2019.
The post [Webinars] DevSecOps best practices, AppSec tools, and the year in open source appeared first on So… Continue reading [Webinars] DevSecOps best practices, AppSec tools, and the year in open source
With 36 years of experience, Behshad Rejai, VP of engineering in the Software Integrity Group, shares her views of the future of software development.
The post Behshad Rejai on the past, present, and future of software development appeared first on So… Continue reading Behshad Rejai on the past, present, and future of software development
Learn how to add static application security testing (SAST) to your CI/CD workflows to constantly verify code changes and improve application integrity.
The post [Webinar] Static Analysis Security Testing (SAST) in CI/CD: Why and How appeared first on… Continue reading [Webinar] Static Analysis Security Testing (SAST) in CI/CD: Why and How
David Woodhouse at AWS, who maintains the open source OpenConnect VPN client, explains how he integrated Coverity Scan with GitLab CI.
The post Integrating Coverity Scan with GitLab CI appeared first on Software Integrity Blog.
The post Integrating Co… Continue reading Integrating Coverity Scan with GitLab CI
For sustainable, long-term application security, both developers and information security professionals must embrace their new roles created by DevSecOps.
The post Report: Security and development teams need to ‘embrace’ new roles in DevSe… Continue reading Report: Security and development teams need to ‘embrace’ new roles in DevSecOps