all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CI/CD pipelines and the cloud: Are your development secrets at risk?

Add to bookmarks
May 8, 2024, noon | jpmellojr@gmail.com (John P. Mello Jr.)

ReversingLabs Blog blog.reversinglabs.com




Continuous integration/continuous delivery (CI/CD) is widely embraced by developers because of its ability to deliver code changes more frequently and reliably. Unfortunately, it can deliver those code changes insecurely. When coupled with command-line interfaces (CLIs) offered by cloud service providers, including Google, AWS, and Azure, CI/CD pipelines can pose a serious security threat.

appsec & supply chain security aws azure can cd pipelines cloud cloud service cloud service providers code command continuous continuous delivery continuous integration delivery dev & devsecops developers development google integration line pipelines risk secrets service service providers

Visit resource

More from blog.reversinglabs.com / ReversingLabs Blog

When it comes to threat modeling, not all threats are created equal 3 days, 9 hours ago | blog.reversinglabs.com
appsec & supply chain security can career fix +4
CISA's new 'vulnrichment' program aims to bolster the NVD 4 days, 9 hours ago | blog.reversinglabs.com
agency appsec & supply chain security bolster cisa +17
ReversingLabs Search Extension for Splunk Enterprise 5 days, 9 hours ago | blog.reversinglabs.com
apis application blog command +13
What you missed at RSA Conference 2024: Key trends and takeaways 5 days, 9 hours ago | blog.reversinglabs.com
america appsec & supply chain security artificial intelligence (ai) center +20
NSA: State-backed attackers are not after your data — they're targeting CI 1 week, 3 days ago | blog.reversinglabs.com
advanced advanced persistent threat agency apt +22
CI/CD pipelines and the cloud: Are your development secrets at risk? 1 week, 4 days ago | blog.reversinglabs.com
appsec & supply chain security aws azure can +21
Why GenAI fails at full SOC automation 1 week, 5 days ago | blog.reversinglabs.com
ai tools automation autonomous build +23
Verizon 2024 DBIR: Software supply chain risks fuel a data breach epidemic 2 weeks, 3 days ago | blog.reversinglabs.com
alarm appsec & supply chain security breach breaches +25
What’s hot at RSAC 2024: 8 SSCS talks you don’t want to miss 2 weeks, 4 days ago | blog.reversinglabs.com
appsec & supply chain security cisos development don +16

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada
View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA
View on infosec-jobs.com

Computer and Forensics Investigator

@ ManTech | 221BQ - Cstmr Site,Springfield,VA
View on infosec-jobs.com

Senior Security Analyst

@ Oracle | United States
View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India
View on infosec-jobs.com