DEV Community

# devsecops

Integrating security practices into the DevOps lifecycle.

Posts

👋 Sign in for the ability to sort posts by relevant, latest, or top.
Bandit in a File Automation Script: Security Risks Hidden in Small Python Tools
kiarazmurillo profile

Bandit in a File Automation Script: Security Risks Hidden in Small Python Tools

#python #security #devsecops
Comments
7 min read
Why Every CISO Needs an AIBOM in 2026 — And What Vendors Get Wrong
grumpysage profile

Why Every CISO Needs an AIBOM in 2026 — And What Vendors Get Wrong

#security #ai #devsecops #governance
Comments
9 min read
Why Cursor Keeps Installing Vulnerable npm Packages
c_k_fb750e731394 profile

Why Cursor Keeps Installing Vulnerable npm Packages

#security #webdev #ai #devsecops
Comments
3 min read
SAST vs SCA: why your CI pipeline needs both
rushabh5000 profile

SAST vs SCA: why your CI pipeline needs both

#sast #security #devsecops #webdev
Comments
4 min read
Building CIS-Hardened, SBOM-Attested CentOS 9 Golden Images with Packer, QEMU and PingAccess - entirely on WSL2
darkedges profile

Building CIS-Hardened, SBOM-Attested CentOS 9 Golden Images with Packer, QEMU and PingAccess - entirely on WSL2

#devsecops #packer #supplychainsecurity #linux
Comments
6 min read
Security triage shouldn't happen in another browser tab.
renato_marinho profile

Security triage shouldn't happen in another browser tab.

#security #mcp #ai #devsecops
Comments
4 min read
Applying Checkov SAST to Detect Security Issues in Terraform Infrastructure as Code
abel_fernandopacompiaor profile

Applying Checkov SAST to Detect Security Issues in Terraform Infrastructure as Code

#terraform #security #devsecops #checkov
Comments
4 min read
Shifting Security Left for AI Agents: Enforcing AI-Generated Code Security with GitGuardian MCP
dwayne_mcdaniel profile

Shifting Security Left for AI Agents: Enforcing AI-Generated Code Security with GitGuardian MCP

#security #ai #devsecops #github
Comments
6 min read
The security dashboard is where productivity goes to die
renato_marinho profile

The security dashboard is where productivity goes to die

#ai #security #devsecops #programming
Comments
4 min read
78% False Negatives: Your AI Security Scanner Is Gaslighting You
techpotions profile

78% False Negatives: Your AI Security Scanner Is Gaslighting You

#security #devsecops #ai
Comments
5 min read
DevOps Security Best Practices Every Engineering Team Should Follow
jjoyneriv profile

DevOps Security Best Practices Every Engineering Team Should Follow

#devops #security #devsecops #hardening
3
Comments
8 min read
Protecting Developers Means Protecting Their Secrets
dwayne_mcdaniel profile

Protecting Developers Means Protecting Their Secrets

#security #devsecops #appsec #devops
Comments
10 min read
Nation-State Actors Are Now Targeting Your AI Agent's npm Packages
toniantunovic profile

Nation-State Actors Are Now Targeting Your AI Agent's npm Packages

#security #npm #ai #devsecops
Comments
6 min read
DevSecOps Automation: A Deep Dive into SAST
1doneazy profile

DevSecOps Automation: A Deep Dive into SAST

#devsecops #sast #cicd #security
Comments
4 min read
Why Cursor Keeps Hardcoding Secrets in AI-Generated Code (CWE-798)
c_k_fb750e731394 profile

Why Cursor Keeps Hardcoding Secrets in AI-Generated Code (CWE-798)

#security #webdev #ai #devsecops
2
Comments
3 min read
👋 Sign in for the ability to sort posts by relevant, latest, or top.