DEV Community

# devsecops

Integrating security practices into the DevOps lifecycle.

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Are AI Apps Safe? What Developers Should Build Into AI Systems Before Production
alexcybersmith profile

Are AI Apps Safe? What Developers Should Build Into AI Systems Before Production

#architecture #security #ai #devsecops
1
Comments
9 min read
The State of Secrets Sprawl 2026: AI-Service Leaks Surge 81% and 29M Secrets Hit Public GitHub
dwayne_mcdaniel profile

The State of Secrets Sprawl 2026: AI-Service Leaks Surge 81% and 29M Secrets Hit Public GitHub

#security #devsecops #ai #appsec
Comments
6 min read
Miasma Worm: How Opening a Repo in Claude Code Became a Credential Theft Vector
toniantunovic profile

Miasma Worm: How Opening a Repo in Claude Code Became a Credential Theft Vector

#security #supplychainsecurity #claudecode #devsecops
Comments
9 min read
GitHub Organization Security Hardening: Exact Controls and Step-by-Step Setup Guide
mike_anderson_d01f52129fb profile

GitHub Organization Security Hardening: Exact Controls and Step-by-Step Setup Guide

#github #security #devsecops #supplychain
1
Comments
29 min read
組織向け GitHub セキュリティ・ハードニング完全ガイド
mike_anderson_d01f52129fb profile

組織向け GitHub セキュリティ・ハードニング完全ガイド

#github #security #devsecops #supplychain
Comments
29 min read
End-to-End GitHub Security Hardening Guide for Organizations
mike_anderson_d01f52129fb profile

End-to-End GitHub Security Hardening Guide for Organizations

#github #security #devsecops #supplychain
Comments
44 min read
When Chain Analysis Fails: Three Boundaries You Cannot Cross
eldor_zufarov_1966 profile

When Chain Analysis Fails: Three Boundaries You Cannot Cross

#security #devsecops #programming #career
Comments
4 min read
The Gemini CLI CVSS 10 Attack: How a GitHub Issue Became a Supply Chain Weapon
toniantunovic profile

The Gemini CLI CVSS 10 Attack: How a GitHub Issue Became a Supply Chain Weapon

#security #promptinjection #supplychainsecurity #devsecops
Comments
6 min read
Anyone with GitHub issue access can steal your CI/CD secrets. Here's why.
agentshield profile

Anyone with GitHub issue access can steal your CI/CD secrets. Here's why.

#security #cicd #devsecops #promptinjection
Comments
6 min read
GitGuardian NHI Governance Now Gives More Comprehensive Visibility
dwayne_mcdaniel profile

GitGuardian NHI Governance Now Gives More Comprehensive Visibility

#nhi #security #devsecops #iam
Comments
6 min read
2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk
dwayne_mcdaniel profile

2,622 Valid Certificates Exposed: A Google-GitGuardian Study Maps Private Key Leaks to Real-World Risk

#security #tls #certificates #devsecops
1
Comments
5 min read
We benchmarked 24 SAST tools on ~700 real vulnerabilities. The 3 best known ones came last
muhammad_hasan profile

We benchmarked 24 SAST tools on ~700 real vulnerabilities. The 3 best known ones came last

#security #sast #devops #devsecops
Comments
1 min read
Embracing Zero Trust Security Architecture: A DevOps and AI Engineer's Perspective
naveenmalothu profile

Embracing Zero Trust Security Architecture: A DevOps and AI Engineer's Perspective

#security #devsecops #cloud
Comments
2 min read
Trivy's March Supply Chain Attack Shows Where Secret Exposure Hurts Most
dwayne_mcdaniel profile

Trivy's March Supply Chain Attack Shows Where Secret Exposure Hurts Most

#security #supplychain #devsecops #cicd
1
Comments 1
5 min read
Developers Are Now the Attack Surface
catatsuy profile

Developers Are Now the Attack Surface

#security #devsecops #opensource #cicd
Comments
10 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.