Migrating To Kubernetes? Embrace Infrastructure As Code As Well
When implemented and leveraged together, Kubernetes and infrastructure as code (IaC) can help automate security and reduce friction between devs and security.
6 key Kubernetes DevSecOps principles: People, processes, technology
These are the key principles to keep in mind when developing a Kubernetes DevSecOps strategy—from embedding the right processes across the application lifecycle to measuring the right KPIs and hiring the right talent.
From manifest to workload: Embedding Kubernetes security at each phase of the DevOps lifecycle
The key to holistic Kubernetes security is to identify risks at each stage of the DevOps lifecycle to prevent risks within a Kubernetes production environment.
Infrastructure security advantages of leveraging Kubernetes
Kubernetes offers several built-in security features as well as the opportunity to shift infrastructure security left and embrace DevSecOps.
All roads lead to code: How Bridgecrew leverages tracing for GitOps and drift detection
Powered by our open-source tool Yor, Bridgecrew leverages code-to-cloud traceability to fix runtime issues in code and prevent drift.
2022 Prediction: DevSecOps will cross the chasm
DevSecOps hit its stride in 2021, so what will 2022 bring? Expect to see more DevSecOps professionals, the continued rise of IaC, and more.
The key to DevSecOps success: Cross-team knowledge sharing
The core of DevSecOps includes cross-team collaboration and knowledge sharing. Here are three things devs and security can learn from each other.
5 ways to configure a monorepo for DevSecOps efficiency
As monorepos get more popular, we’re sharing our tips to make sure they’re configured for optimal DevSecOps efficiency.
How to prevent the IaC misconfiguration snowball effect
Without the right tooling, one IaC misconfiguration can snowball into thousands of security alerts. Proactive, embedded IaC security can help.
Building the Business Case for DevSecOps
Find out how the collaboration and productivity benefits of DevSecOps outweigh the upfront investment costs of training and implementation.
Introducing Smart Fixes: Use your team’s secure coding patterns to fix new issues
Our newest feature extends our built-in fix suggestions with Smart Fixes sourced directly from your repositories.
Bridgecrew configuration as code using our new Terraform Provider
Terraform is one of the most popular infrastructure as code (IaC) tools used to deploy,…