all InfoSec news
NIST updates supply chain guidance: 3 ways to pump up your CI/CD security
ReversingLabs Blog blog.reversinglabs.com
The final version of guidelines to help organizations secure their software supply chain has been released by the National Institute of Standards and Technology (NIST). The document, "Strategies for the Integration of Software Supply Chain Security in DevSecOps CI/CD Pipelines (NIST SP 800-204D)," delivers actionable measures software development organizations can use to integrate the various building blocks of software supply chain security assurance into their continuous integration/continuous delivery (CI/CD) pipelines.
actionable appsec & supply chain security cd pipelines cd security dev & devsecops devsecops document guidance guidelines integration national nist organizations pipelines security software software supply chain software supply chain security standards strategies supply supply chain supply chain security technology updates version