A Comprehensive Application Security Program - What should you include
Application security, known as AppSec, has become an extremely important part of the security program. This article looks at what makes a mature and comprehensive AppSec program.
GitOps - an extension of DevOps for modern infrastructure management
GitOps is an evolution of infrastructure as code, a framework that can drastically improve deployment speed and developer efficiency. Here we run through exactly what GitOps is and how to practically implement it.
DevSecOps Glossary
A helpful glossary of common terms and definitions used in DevSecOps explained with amusing comics.
Git hooks - pre-commit, post-commit, post-receive
Git hooks are extremely useful to secure the development practice. In this blog post, I will take the example of detecting secrets in source code to illustrate how you can make the most out of git hooks.
