DevSecOps Archives

Survey Surfaces Raft of Container Security Challenges

A BellSoft survey reveals gaps in container security practices, showing that human error, limited vulnerability scanning, and infrequent patching continue to expose cloud-native environments to risk ...

Mike Vizard | January 29, 2026 | BellSoft survey, cloud native security, container patching, container security, DevSecOps, image signing, Kubernetes security, SBOM, software supply chain security, vulnerability scanning

The Future of Workload Isolation with Emily Long

Edera CEO Emily Long, in the wake of the company picking up an additional $15 million in funding, explains why a new approach to isolating workloads is needed to better secure IT ...

Mike Vizard | March 11, 2025 | AI, cloud security, DevSecOps, Edera

Tigera, cloud-native, ulnerability containers

Tigera Adds Vulnerability Management Capabilities to Calico Platform

Tigera today extended the reach of its container networking and security platform for cloud-native application environments based on open-source Calico software into the realm of vulnerability management. Dhiraj Sehgal, director of product ...

Mike Vizard | September 18, 2024 | active vulnerability management

BellSoft, survey, CNCF, report, survey, openlogic, software, survey, CNCF, cloud-native, kubernetes, application security report

Survey Surfaces Cloud-Native Application Security Challenges

A global survey of 600 DevOps, engineering and security professionals finds more than two-thirds (67%) reporting their organization has delayed or slowed application development as a result of security concerns. Conducted by ...

Mike Vizard | June 21, 2024 | application security, cloud-native apps, DevSecOps, kubernetes, survey, vulnerabilities

Isovalent Strengthens Cloud Native Security via Tetragon Enterprise Update

The goal is to provide an important cybersecurity piece to the cloud-native computing puzzle ...

Mike Vizard | May 3, 2024 | cncf, Isovalent, linux, open source, Tetragon

Docker Hub, container images, Ensuring Container Security

JFrog Reveals Docker Hub Compromise Spanning Millions of Repositories

Malware attacks against millions of Docker Hub repositories have been underway since 2021. Assume all the content you host on a publicly accessible repository might be compromised ...

Mike Vizard | April 30, 2024 | docker, docker hub, JFrog, malware, malware campaign

Safeguarding Serverless Architectures: Understanding the Vital Role of CNAPP

In today's rapidly evolving tech landscape, understanding serverless architectures is crucial for organizations striving to leverage cloud computing efficiently ...

Anton Lucanus | April 30, 2024 | CNAPP, CSPM, cybersecurity, cyberthreats, serverless architecture

Red Hat Adds Developer Tools to Extend DevSecOps Reach

Red Hat added three new developer tools, expanding its DevSecOps portfolio for building secure cloud-native applications ...

Mike Vizard | April 18, 2024 | developer tools, DevSecOps, red hat

container security sysdig snyk container Mirantis Aqua Security GitHub

Sysdig Allies With Snyk to Improve Container Security

Sysdig and Snyk are integrating their respective security technologies to enable organizations to better secure the entire container life cycle. Eric Carter, director of product marketing for Sysdig, says the integration of ...

Mike Vizard | February 16, 2022 | container security, microservices architecture, Snyk, Sysdig

Tigera Adds Scanning Engine to CNAPP for Kubernetes

Tigera today announced the addition of a scanning engine to its Calico Cloud service that will continuously assess images for vulnerabilities and misconfigurations in addition to managing interactions among microservices running on ...

Mike Vizard | February 10, 2022 | Calico Cloud, cloud native security, CNAPP, Tigera