Details
CI/CD pipelines play a critical role in accelerating software delivery and driving rapid innovation. However, the rapid pace of these environments come with an equally heightened risk of security missteps, requiring a new set of security best practices to ensure CI/CD integrity. While performing image scans to check for known vulnerabilities remains a cornerstone of CI/CD security, it should be one of many security initiatives that should be implemented in your pipeline to protect your application.
Join us in this Fireside Chat, as we delve into some of the key considerations and best practices when securing your CI/CD pipelines in cloud native environments.
We will discuss:
Common CI/CD threats and the attack surface, including insecure code, poisoned pipeline execution, exposed secrets, use of third party service, and more
Best practices to harden your environment related to:
Authentication and access control
Dev environment best practices, such as keeping tools, software, and OS up to date
Development best practices including embedding security scanning into the CI/CD pipeline, generating SBOMs, and more
Presenters:
Burr Sutter
Chief Developer Evangelist, Red Hat
Ix-chel Ruiz
Developer Advocate, JFrog
Jesse Davis
Chief Technologist, DZone
Join Now for More Content & Events
For event and sponsorship inquiries, please email: [email protected]
