TLDR: Contrasting DevSecOps with traditional models reveals a proactive “shift-left” approach, ensuring security is embedded from the project’s start. Essential tools like OWASP Dependency-Check and …
TLDR: DevSecOps is the process of automating security within the Software Development Life Cycle. Here’s a guide loaded with resources to help your company Shift Everywhere. Where’s the guideline? B…
TLDR: For those that use a Jenkinsfile instead of build steps created within Jenkins, have you ever used the Snippet Generator feature? What Is Jenkins To begin, what is Jenkins? According to their w…
Hi all, Thank you so much for the support. We have officially hit 1,000 unique blog users 🎉 When I first created my blog site, I had no intentions on my blog site being read by this many people. I si…
TLDR: Dependency Track, an open-source continuous component analysis platform, is a great application to use to manage your open source libraries and their licenses when on a tight budget. How Did I …
TLDR: According to an official FBI alert, SonarQube instances were breached, causing source code to end up in the hands of hackers. But what really happened? You may have missed this news because of …
On April 7th, a Tuesday, I noticed a random meeting popped up on my schedule for 11:30am. The title of the meeting was simply “COVID Update.” Initially, I assumed this meeting was to tell employees a…
With SaaS on the rise, more companies are hosting their applications in “the cloud.” One of the top cloud providers today is Microsoft Azure. According to Microsoft, 95% of Fortune 500 companies trus…
TLDR: A quick dive into DevOps, the problem with traditional Application Security, and how DevSecOps is being adopted to rule out tradional application security. A Bit on DevOps To start, let’s make …
My name is Keith Davis, and I am going to give homebuying tips and advice from my personal experience. Growing up, since I was about 14, I always said I’m going to buy my first house when I graduate…