Exposed credentials across the DevSecOps pipeline: 5 places secrets hide in plain sight Julia Benson January 17, 2023January 17, 2023 Discover the top five places exposed credentials hide in your organization and learn best practices to shift your secrets security left. DevSecOps
Secure vulnerable images found in IaC templates with Bridgecrew Taylor Smith October 18, 2022October 17, 2022 Learn how to proactively identify and scan vulnerable images sourced in IaC and CI/CD files with Bridgecrew’s new Image Referencer capability. Product update
Checkov enables developer-first CI/CD security with new supply chain security policies Guy Eisenkot August 3, 2022September 20, 2022 Learn how you can embed CI/CD best practices into your existing DevOps workflows with Checkov’s new CI/CD security policies. Open source projects
How to prevent the 5 most common software supply chain weaknesses Bridgecrew July 28, 2022August 23, 2022 Learn the basics of software supply chain security and 7 best practices to protect yourself against common software supply chain weaknesses. DevSecOps
Introducing Development Pipelines: Prioritize and secure high-risk repos and code Gilad Mark July 7, 2022August 23, 2022 Learn how to prioritize security issues across all your repositories and code reviews with Bridgecrew’s Development Pipeline screen. Product update
Crawl, walk, run: Operationalizing your IaC security program Mike Urbanski June 30, 2022August 12, 2022 Learn how to operationalize your infrastructure as code security program with our rollout timeline and guidance for your first ninety days. Infrastructure as code
Adding IaC security scans to your CI pipeline Guy Eisenkot November 19, 2020November 19, 2020 Set up infrastructure as code (IaC) security to gain the benefits of speed, scalability, cost-savings, and hardened cloud security posture. DevSecOps Infrastructure as code
Buildkite, meet Bridgecrew! Matt Johnson September 11, 2020October 27, 2020 A super simple walkthrough integrating Buildkite and the Bridgecrew platform, adding infrastructure as code scanning to your CI/CD pipelines. DevSecOps Product update
Introducing ten (and a half) new developer-first integrations to Bridgecrew’s codified cloud security platform Guy Eisenkot June 8, 2020July 22, 2020 In our biggest update yet, we're extremely proud to release new integrations to expand our support throughout the development lifecycle. Company news Product update