Topic: cicd
GrammaTech and ArmorCode partner to deliver vulnerability management orchestration
Application security testing company GrammaTech and AppSecOps company ArmorCode have announced a technology integration partnership geared at helping users automate product security across development, testing, feedback, and deployment. With the GrammaTech CodeSonar static application security testing (SAST) platform, ArmorCode users gain improved safety and security vulnerability intelligence for integrating application security capabilities into CI/CD pipelines. … continue reading
Harness announces new Jira integrations
The software delivery platform provider Harness today announced the release of the Harness Continuous Integration (CI) module and Harness Feature Flags which give customers visibility into feature development and release information with Jira Software. “Integrating Harness and Jira Software through Harness CI and Feature Flags provide users what they need most today: a consolidated view … continue reading
CircleCI introduces new security and automation features
CircleCI, the continuous integration and continuous delivery (CI/CD) platform, today announced new features and integrations intended to improve security and automation practices for modern software developers. According to the company, the new self-hosted container runner is designed to provide greater flexibility and security in order to help developers simplify infrastructure management with greater traceability. With … continue reading
CloudBees acquires ReleaseIQ to expand DevSecOps offerings
CloudBees acquired the ReleaseIQ DevOps Platform to expand the company’s DevSecOps capabilities and to empower customers with a low-code, end-to-end release orchestration and visibility solution. The SaaS offering enables DevOps organizations to compose and analyze workflows, and also orchestrate a combination of CI/CD technologies including Jenkins without the need to migrate or replace. “The decision … continue reading
New CI/CD configuration policies added to Checkov
Checkov, the open-source tool for finding infrastructure misconfigurations, has been updated with new CI/CD configuration policies. These policies can be applied across popular CI/CD frameworks like GitHub Actions, GitLab Runners, BitBucket Pipelines, CircleCI, and Argo. Checkov has a developer-first approach to supply chain security, so it embeds these CI/CD policies directly into existing DevOps workflows … continue reading
Combining Static Application Security Testing (SAST) and Software Composition Analysis (SCA) Tools
When creating, testing, and deploying software, many development companies now use proprietary software and open source software (OSS). Proprietary software, also known as closed-source or non-free software, includes applications for which the publisher or another person reserves licensing rights to modify, use, or share modifications. Examples include Adobe Flash Player, Adobe Photoshop, macOS, Microsoft … continue reading
A guide to CI/CD tools
The following is a listing of CI/CD tool providers, along with a brief description of their offerings. CloudBees provides the leading software delivery platform for enterprises, enabling them to continuously innovate in a world powered by the digital experience. CloudBees enables organizations with highly-complex environments to deliver scalable, compliant, governed, and secure software from the … continue reading
CI/CD pipelines getting wider
In the past, the CI/CD pipeline was simply a place to integrate code. Developers would write their code in GitHub, pass it through the pipeline, and then deploy it. However, with the emergence of shift left security and newer automation practices, the pipeline has become a much more critical piece of the software delivery lifecycle. … continue reading
Armory launches Continuous-Deployment-as-a-Service
Armory announced the general availability of Armory Continuous Deployment-as-a-Service to deliver declarative deployments across multiple environments that support advanced progressive strategies. “Our goal is to give companies a solution that’s simple to use but will grow with them as complexity increases,” said Jim Douglas, president and CEO of Armory. “The new product enables development teams … continue reading
Mattermost 7.0 launched with custom apps and integrations
Mattermost 7.0 offers users the ability to develop custom apps and integrations so that users can communicate securely with native voice calls and screen sharing. Users can also leverage out-of-the-box workflow templates to improve technical team productivity and operations. The Mattermost developer collaboration platform now features enhanced capabilities to enable real-time collaboration for critical developer … continue reading
Octopus Deploy introduces new cloud native features
Octopus Deploy, provider of continuous deployment orchestration software, today announced that it has expanded support for teams that are containerizing their applications and services. With the latest updates, DevOps teams now have the ability to modernize CI/CD practices at their own pace as well as manage new and older applications all in the same tool. … continue reading
CD Foundation announces new specification for defining event data format
The CD Foundation has announced CDEvents, a vendor-neutral specification for defining the format of event data. A standardized set of specifications will enable an ecosystem of tools that can collect, store, visualize and analyze events across CD platforms to help measure DevOps metrics and performance and visualize end-to-end workflows. “CDEvents open the doors to scalable … continue reading
