Prevent secret leaks: Find and secure secrets across your repositories and pipelines
Secrets security requires detection across hundreds of access tokens, API keys, certificates, passwords, etc., embedded into existing developer workflows.
Adopting advanced Terraform security use cases with Bridgecrew
Learn 5 advanced Terraform security use cases and discover how you can streamline your IaC security with Bridgecrew.
Exposed credentials across the DevSecOps pipeline: 5 places secrets hide in plain sight
Discover the top five places exposed credentials hide in your organization and learn best practices to shift your secrets security left.
You must comply! Why you need proactive open-source license compliance
Learn the basics of open-source license compliance and discover how to adopt a proactive, developer-first approach to open-source security.
Infrastructure as code security and AppSec: Streamlined DevSecOps from app to infra
Learn how to get streamlined DevSecOps when you consolidate AppSec and infrastructure as code security.
Secure vulnerable images found in IaC templates with Bridgecrew
Learn how to proactively identify and scan vulnerable images sourced in IaC and CI/CD files with Bridgecrew’s new Image Referencer capability.
Full-stack code visibility with Bridgecrew’s Software Bill of Materials (SBOM) generation
Learn how to get visibility into risk exposure and prevent supply chain attacks with Bridgecrew’s software bill of materials (SBOM) generation capabilities.
AppSec and CloudSec 101: Blurring the lines between cloud-native app layers
Learn why AppSec and CloudSec are blurring together, and get tips for leveraging IaC to maintain cohesive application and infrastructure security for your cloud-native teams.
Introducing Software Composition Analysis: Developer-first open source security
Learn about Bridgecrew’s new software composition analysis (SCA) solution and see how it empowers developers to secure their open-source software.
The rise of software developers in cloud security
Learn about the rise of developer-first cloud security that automates cloud-native security, simplifies permissions, and implements DevSecOps.
Using your pipelines to harden your pipelines: The importance of CI/CD security for your software supply chain
Learn how to shift your CI/CD security left to proactively harden your pipelines against software supply chain attacks.
How to enforce consistent code scanning rules across Checkov and Bridgecrew
Learn how to create customized and consistent code security scanning rules across the Bridgecrew platform and Checkov.
6 delivery pipeline security best practices for secure software supply chains
Learn 6 VCS and CI/CD weaknesses that may leave your software supply chain vulnerable to attack and how to address them.