all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CI/CD pipelines and the cloud: Are your development secrets at risk?

Add to bookmarks
May 8, 2024, noon | jpmellojr@gmail.com (John P. Mello Jr.)

ReversingLabs Blog blog.reversinglabs.com




Continuous integration/continuous delivery (CI/CD) is widely embraced by developers because of its ability to deliver code changes more frequently and reliably. Unfortunately, it can deliver those code changes insecurely. When coupled with command-line interfaces (CLIs) offered by cloud service providers, including Google, AWS, and Azure, CI/CD pipelines can pose a serious security threat.

appsec & supply chain security aws azure can cd pipelines cloud cloud service cloud service providers code command continuous continuous delivery continuous integration delivery dev & devsecops developers development google integration line pipelines risk secrets service service providers

Visit resource

More from blog.reversinglabs.com / ReversingLabs Blog

NSA's zero-trust maturity for AppSec: What you need to know 2 days, 13 hours ago | blog.reversinglabs.com
agency application appsec appsec & supply chain security +17
Security operations by the numbers: 30 cybersecurity stats that matter 3 days, 15 hours ago | blog.reversinglabs.com
cybersecurity defenses enterprise enterprise it +17
The state of AppSec: Are we getting better — or falling behind? 4 days, 16 hours ago | blog.reversinglabs.com
application application security appsec appsec & supply chain security +7
Why shareable SBOMs are essential for software security 1 week, 3 days ago | blog.reversinglabs.com
appsec & supply chain security bills building collecting +21
Will CISA's Secure by Design pledge be a catalyst for better software security? 1 week, 4 days ago | blog.reversinglabs.com
adoption agency akamai amazon +17
When it comes to threat modeling, not all threats are created equal 2 weeks, 2 days ago | blog.reversinglabs.com
appsec & supply chain security can career fix +4
CISA's new 'vulnrichment' program aims to bolster the NVD 2 weeks, 3 days ago | blog.reversinglabs.com
agency appsec & supply chain security bolster cisa +17
ReversingLabs Search Extension for Splunk Enterprise 2 weeks, 4 days ago | blog.reversinglabs.com
apis application blog command +13
What you missed at RSA Conference 2024: Key trends and takeaways 2 weeks, 4 days ago | blog.reversinglabs.com
america appsec & supply chain security artificial intelligence (ai) center +20

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Corporate Intern - Information Security (Year Round)

@ Associated Bank | US WI Remote
View on infosec-jobs.com

Senior Offensive Security Engineer

@ CoStar Group | US-DC Washington, DC
View on infosec-jobs.com