InfoQ Homepage Software Supply Chain Content on InfoQ
Articles
RSS Feed-
/articles/devops-security-best-practices/en/smallimage/when-DevOps-meets-security-to-protect-software-small-1680083278523.jpg)
When DevOps Meets Security to Protect Software
Security can no longer be an afterthought in the software development process. Collaboration between security and development needs to happen early to be effective.
-
/articles/devops-and-cloud-trends-2022/en/smallimage/InfoQ-Trend-Report-logo-small-1648721970880-1655385008093.jpeg)
DevOps and Cloud InfoQ Trends Report – June 2022
This article summarizes how we see the "cloud computing and DevOps" space in 2022, which focuses on fundamental infrastructure and operational patterns, the realization of patterns in technology frameworks, and the design processes and skills that a software architect or engineer must cultivate.
-
/articles/application-security-manager-role/en/smallimage/Application-Security-Manager-small-image-1634312284905.jpg)
Application Security Manager: Developer or Security Officer?
The role of the Application Security Manager (ASM) should be the driving force of the overall code review process. An ASM should know about development processes, information security principles, and have solid technical skills. To get a good ASM you can either use experts from a service provider or grow an in-house professional from developers or security specialists.
-
/articles/buildpacks-software-supply-chain/en/smallimage/logo-1633347463775.jpg)
Using Cloud Native Buildpacks to Address Security Requirements for the Software Supply Chain
Software supply chain attacks are increasing in severity and frequency, with no clear path laid out towards its mitigation. A simple way to trace the origin of vulnerable components is available in the form of Software Bill Of Materials (SBOMs), generated automatically when using Buildpacks.