CI CD Security

what is an SBOM Security - Software Security

18 Jan SBOM Security and Its Role in Software Security

Posted at 18:01h in CI CD Security, SDLC by Fátima Said 0 Comments

Explore the pivotal role of SBOM in software security, mitigating vulnerabilities, ensuring compliance, and revolutionizing cybersecurity. ...

16 Jan Software Supply Chain Security Threats in the Package Stage

Posted at 16:37h in CI CD Security by Fátima Said 0 Comments

The software package stage is a critical juncture in the software supply chain lifecycle, but it is also a vulnerable point. Learn about common threats that can arise during this phase, such as compromised packages and compromised dependencies, and how to mitigate them with robust...

09 Jan Software Supply Chain Threats in the Build Stage

Posted at 14:30h in CI CD Security, SDLC by Fátima Said 0 Comments

Stay ahead of the curve with SSCS predictions for 2024: More sophisticated attacks, visibility, risk management, insider threats and emerging technologies will shape the future of software supply chain security. ...

21 Dec Mastering Software Supply Chain Visualization: Enhance Security & Boost Efficiency

Posted at 10:00h in CI CD Security, SDLC by Jesús Cuadrado 0 Comments

Master your software supply chain visualization and unlock a world of security and efficiency. Discover how to map, prioritize, and automate your supply chain for a secure, streamlined, and successful software development process. ...

19 Dec A Deep Dive into CI/CD Pipelines Vulnerabilities (I) : Poisoned Pipeline Execution (PPE)

Posted at 15:24h in CI CD Security, SDLC by Luís García 0 Comments

Discover the dangers of Poisoned Pipeline Execution (PPE) and how to protect your CI/CD pipelines from this security risk. We will also introduce Xygeni Scanner, a tool that can help you identify and remediate PPE vulnerabilities in your pipelines. ...

15 Nov Embracing Zero Trust in Software Supply Chain Security: Fostering Trust Through Integrity

Posted at 16:57h in CI CD Security, SDLC by Fátima Said 0 Comments

Zero Trust in SSCS ensures steadfast security by verifying every user, device, and application. Explore its implementation to safeguard your software supply chain integrity. ...

BlackHat Europe Blog post promo (2540 x 1340 px) (2) (1)

07 Nov Join Us at Black Hat Europe 2023: Mastering CI/CD Security with Xygeni

Posted at 17:06h in CI CD Security, SDLC by Fátima Said 0 Comments

Xygeni will be at Black Hat Europe 2023, the premier information security event. Join us in London from December 4-7 for cutting-edge research, technical training, and invaluable networking opportunities....

25 Jul NSA CI/CD Security Guidelines: Protecting the Software Supply Chain

Posted at 13:46h in CI CD Security, SDLC by Miguel Angel Mederos 0 Comments

From 2019 to 2022, the average annual increase in software supply chain attacks exceeded 700%, a growing trend whose economic impact is expected to surpass 80 billion dollars in 2026. Recognizing the severity of this issue, the National Security Agency (NSA) and the Cybersecurity and...

07 Dec What can go wrong with CI/CD pipelines?

Posted at 15:08h in CI CD Security, SDLC by Luis Rodríguez 0 Comments

Continuous integration and continuous delivery (CI/CD) pipelines are the foundation of any software organization that builds software in a "modern" way. Automation provides great power, but most developers miss the responsibility it entails. Developer: Yeah, we take CI/CD security seriously and have strong control on code maintainers, review...