Putting the “sec” in DevSecOps: An overall reduction of risk
In this Help Net Security interview, Cindy Blake, Senior Security Evangelist at GitLab, talks about the importance of integrating security in DevSecOps and how to overcome the …
Tens of thousands unpatched GitLab servers under attack via CVE-2021-22205
Attackers are actively exploiting an “old” vulnerability (CVE-2021-22205) to take over on-premise GitLab servers, Rapid7 researcher Jacob Baines warns. The …
Sentry’s capabilities enable enterprise teams to reduce risk and management overhead
Sentry announced new capabilities that reduce management overhead and accelerate issue response times for enterprise development teams. With percent-based alerts, Code Owners …
Beyond Identity’s solution secures the software supply chain against insider threats and malicious attacks
Beyond Identity announced a solution that closes a critical vulnerability and secures the software supply chain against insider threats and malicious attacks. Beyond …
Aqua Trivy chosen as the default scanner for GitLab Auto DevOps
Aqua Security announces that Aqua Trivy is now the default scanner for GitLab Auto DevOps. Customers can now automatically scan the GitLab CI pipeline for OS package …
Accurics partners with GitLab to contextualize risk across the SDLC
Accurics announced a technology partnership with GitLab, a single application for the DevOps lifecycle, as well as the general availability of its integration with …
Cequence Security API Sentinel 2.0 helps orgs strengthen their runtime API protections
Cequence Security announced the release of API Sentinel 2.0, adding powerful features that will help organizations strengthen their runtime API protections by “shielding …
Product showcase: Accurics
It is no big secret that infrastructure has changed over the last decade. We went from tools such as autossh, to configuration management, and ended up with Infrastructure as …
Digital business requires a security-first mindset
Security is an undeniable necessity for the survival and success of any company. COVID-19 accelerated digital transformation initiatives across all industries and this shift …
BoxBoat reports momentum for BoxOps, its platform for DevSecOps managed services
BoxBoat announced that it is realizing significant managed services revenue growth driven by greater customer adoption of its BoxOps platform. This mirrors the growth that …
Shujinko AuditX expands compliance automation to all major clouds and regulatory frameworks
Shujinko announced a major update to AuditX, the system of record for enterprise compliance data. This update significantly broadens the platform’s automated data collection …
Checkmarx enables users to integrate its AST solutions into the GitLab CI/CD pipeline
Checkmarx announced its new strategic partnership with GitLab, the single application for the DevOps lifecycle, enabling users to integrate Checkmarx’s leading application …
Featured news
Resources
Don't miss
- iOS zero-click attacks used to deliver Graphite spyware (CVE-2025-43200)
- Unpacking the security complexity of no-code development platforms
- Researchers warn of ongoing Entra ID account takeover campaign
- LockBit panel data leak shows Chinese orgs among the most targeted
- Identifying high-risk APIs across thousands of code repositories