Archive for the ‘DevSecOps’ Category

Here is an updated overview I prepared on Socket Security’s solution for preventing attacks on the software and application supply chain. Socket Security: An Overview Socket Security positions itself as a Supply Chain Security platform with a ‘Developer-first’ approach, directly targeting the problem of malicious and risky Open Source dependencies. With modern code often based on over 90% Open Source code […]

Comparison of HashiCorp Vault Enterprise vs Open Source vs Cloud including: technology; security, availability, user interface, pricing etc.

We have been chosen to officially represent the solutions of Jfrog,
and we now offer licensing, support, integration with complementary tools, managed services and more.

Here we summarize our current offering of our DevSecOps and AppSec solutions including SAST, SCA, DAST, code security and more

ALM-Toolbox celebrates 10 years of supporting GitLab, helping teams worldwide accelerate DevOps and DevSecOps success

Docker Business is one of key subscription tiers of Docker solution, and it adds more secure layers on top of the basic Docker offering.A common question we get is “What are the special features available only in Docker Business?” So, we’ve put together a quick summary for you. Note: Want a fully detailed list of […]

You are invited to our webinar on Docker, where we will present the latest updates to the product.Docker’s solution today offers advanced container management and image protection, and includes several key components: 🎥 On October 21 we delivered a live webinar on Docker which included: 👉🏻 Watch here here (leave your details and then the recording will […]

We have been chosen to officially represent the solutions of Docker ,
and we now offer licensing, support, integration with complementary tools, managed services and more.

Overview of how Docker connects with git and GitLab, offering best practices for workflows optimized for today’s DevOps environments

Docker recently introduced a new service – Docker Hardened Images (DHI). These are container images that are secure by default, built specifically for modern production environments.

Docker is highly valuable for software developers and engineers, making common tasks more efficient and reliable in daily workflows.
In this article we summarize the main benefits of using Docker by software engineers.

Executive summary: Most breaches involving “secrets” are not zero‑days – they’re the result of static passwords left in configs, long‑lived cloud keys scattered across systems, or environment variables that get copied into logs and crash dumps. HashiCorp Vault changes that story by replacing secrets‑at‑rest with just‑in‑time delivery and dynamic credentials that expire quickly and can […]

On September 8, 2025, a massive npm supply chain attack compromised 18 foundational JavaScript packages, putting billions of applications at risk. This sophisticated incident began with a phishing campaign targeting a prominent package maintainer, Josh Junon, who was lured into providing his login and two-factor authentication (2FA) credentials on a fake npm website. Attackers then used this access to publish malicious updates containing […]

Read how Mattermost incident response solutions help teams manage cybersecurity incidents

We’ve recently organized the videos we have recorded over the years into a centralized “library” of VOD (Video On-Demand)