DEV Community

# devsecops

Integrating security practices into the DevOps lifecycle.

Posts

đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.
DevOps Security Gaps in Startups: What Fast-Growing Teams Keep Getting Wrong
sygitech profile

DevOps Security Gaps in Startups: What Fast-Growing Teams Keep Getting Wrong

#devops #security #startup #devsecops
Comments
3 min read
NemoClaw for the Enterprise: Matrix as the Communication Channel (Part 3)
adnansattar profile

NemoClaw for the Enterprise: Matrix as the Communication Channel (Part 3)

#devsecops #cybersecurity #matrix #nemoclaw
Comments
9 min read
Secret Rotation: 3 Core Principles for Secure Applications
merbayerp profile

Secret Rotation: 3 Core Principles for Secure Applications

#life #security #devsecops #secretsmanagement
Comments
12 min read
Causa GitHub, or: Your Editor Extensions Run as You
vivian-voss profile

Causa GitHub, or: Your Editor Extensions Run as You

#security #supplychain #vscode #devsecops
Comments 1
5 min read
We built a free open source alternative to Wiz for Azure — here is how it works
vishnu_ajith_98100c5d1c03 profile

We built a free open source alternative to Wiz for Azure — here is how it works

#security #azure #cloud #devsecops
Comments
3 min read
How I Discovered and Deobfuscated a Hidden PHP Backdoor on My Server
khaitrang1995 profile

How I Discovered and Deobfuscated a Hidden PHP Backdoor on My Server

#discuss #ai #security #devsecops
1
Comments
2 min read
Why LLM Engineering Is a Cloud Security Problem Nobody Is Talking About
karthiblip profile

Why LLM Engineering Is a Cloud Security Problem Nobody Is Talking About

#devsecops #cloudsecurity #llm
Comments 1
1 min read
The TanStack Attack: How a Worm Slipped Through the npm Pipeline
guayoyo_tech profile

The TanStack Attack: How a Worm Slipped Through the npm Pipeline

#security #devsecops #npm #supplychain
Comments
6 min read
10 Python modules, one dangerous pattern: How I found 13 critical vulnerabilities in an SDK
eldor_zufarov_1966 profile

10 Python modules, one dangerous pattern: How I found 13 critical vulnerabilities in an SDK

#security #python #devsecops #opensource
Comments 2
2 min read
What LucidShark Would Have Caught Before the TanStack Attack Landed
toniantunovic profile

What LucidShark Would Have Caught Before the TanStack Attack Landed

#supplychainsecurity #sca #tanstack #devsecops
Comments
7 min read
Every CISO Needs an AIBOM in 2026 — Here's What Vendors Get Wrong
grumpysage profile

Every CISO Needs an AIBOM in 2026 — Here's What Vendors Get Wrong

#security #ai #devsecops #governance
Comments
8 min read
Skill files are the new supply chain attack surface. Your CI pipeline does not know that yet.
saray_chak profile

Skill files are the new supply chain attack surface. Your CI pipeline does not know that yet.

#security #ai #devsecops #appsec
1
Comments 2
4 min read
How to Review Code Your AI Agent Wrote While You Were Sleeping
toniantunovic profile

How to Review Code Your AI Agent Wrote While You Were Sleeping

#aiagents #codereview #devsecops #codequality
Comments
7 min read
Clinejection: When Your AI Coding Tool Became the Weapon
toniantunovic profile

Clinejection: When Your AI Coding Tool Became the Weapon

#promptinjection #supplychainsecurity #devsecops #githubactions
1
Comments
9 min read
Why Every CISO Needs an AIBOM in 2026 — And What Vendors Miss
grumpysage profile

Why Every CISO Needs an AIBOM in 2026 — And What Vendors Miss

#security #ai #devsecops #governance
Comments
9 min read
đź‘‹ Sign in for the ability to sort posts by relevant, latest, or top.