Archive for the ‘DevSecOps’ Category

What are Differences of SonarQube Editions?

Initially written in January 2022. Last update: April 2023 I’m frequently asked what the differences are between SonarQube versions. From the questions it is clear that the licensing options are not so clear and quite confusing, so I decided to write down the essential points and help make things right. Legend: Core differences What’s in […]

Read more »

Join GitLab Security + Compliance Workshop

Date: January 12, 2023 Time: 6pm – 9pm CET / 9am – 12pm PST Cyber attacks have never been more in the news. From Twitter hacks to identity theft, vulnerabilities are exposing gaps in the application development process. Application security is difficult, especially when security is a separate process from your DevOps workflow. Security has […]

Read more »

Join a GitOps Workshop using GitLab

Date: Tuesday, December 13, 2022 Time: 2pm – 5pm CET Join us to learn how GitLab can quickly get you started down your GitOps journey! This workshop will go over how you can quickly get started using the GitLab Agent for Kubernetes starting with an empty project and moving all the way to deploying a […]

Read more »

HashiCorp Vault Open Source VS Enterprise VS Vault Cloud

Last update: October 2022   Since we provide a variety of secrets management solutions, we’re frequently asked about the differences between HashiCorp Vault open source, Enterprise and Cloud (HCP) – so here it is! Briefly, the open source and Enterprise editions are self-managed so you can host it anywhere. The Enterprise contains all you have […]

Read more »

Join a Live GitLab Security + Compliance Workshop!

Date: Wednesday, September 15th Time: 2:00 pm – 5:00 pm CEST GitLab is a great DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate. Join a virtual & live session for a 3-hour virtual hands on workshop (at no charge) to gain a better understanding of how […]

Read more »

Join a Live GitLab CI/CD Workshop!

Date: Wednesday, August 31st Time: 2:00 pm – 5:00 pm CEST GitLab is a great DevOps platform, delivered as a single application, fundamentally changing the way Development, Security, and Ops teams collaborate. Join a virtual & live session for a 3-hour virtual hands on workshop (at no charge), an Introduction to our CI/CD. In this […]

Read more »

Vulnerabilities in 3rd-party Apps Have Caused Code Theft from GitHub

GitHub reported that a hacker was apparently exploiting a security vulnerability or human error on 3rd-party apps Travis and Heroku. The security vulnerability exposed the tokens, allowing the hacker to steal the tokens and utilize them to enter private repositories on GitHub (including NPM) so he managed to download those repositories – including all the […]

Read more »

HashiCorp Vault VS Akeyless Vault Platform (2023)

Since we provide a variety of secrets management solutions, we’re frequently asked about the differences between HashiCorp Vault and Akeyless Vault platform – so here it is! We made a comparison sheet including more than 10 criteria: Platform; technology; infrastructures; maintenance; required skills; security aspects; high availability (HA) ; user interface (UI) ; Multi-cloud; supporting […]

Read more »

How to Prevent Data Leaks if Hackers Get Access to your Database?

Every week we hear about the latest website to get hacked, and hackers getting access to another database with consumers’ personal data inside. Just in the last weeks there have been numerous reports of hacking, including stealing the medical records of 290,000 patients of the “Mor Medical Institute,” and releasing data of 1 million subscribers […]

Read more »

GitLab CI and Akeyless Vault Integration

You can use Akeyless Vault secret management within GitLab and GitLab CI. Code placed in GitLab or GitLab CI/CD requires secrets in order to properly execute access to various resources. By integrating GitLab CI with Akeyless Vault, you would not need to keep hard coded secrets within the GitLab code repo such as username & […]

Read more »