Tests maintenance

What is continuous testing and why does it matter?

Modern DevOps teams employ professionals which master multiple skills. Strong software development skills are one of the most important. Your team members also need to have a security mindset. And last...
SAST tool selection - integrations

SAST tool selection – tips to pick the right one for you

Every organization which treads security as a top priority needs a Static Application Security Testing (SAST) tool. Run this tool against every software application before you push out new versions to...
How to migrate Kubernetes Pod Security Policy (PSP) using OPA and Styra DAS

How to migrate Kubernetes Pod Security Policy (PSP) using OPA and Styra DAS

The Kubernetes Pod Security Policy (PSP) was one of the first reliable security controls introduced by Kubernetes. It was an Admission Controller that simply checked whether or not the Pods being...
Predictive Scaling Policy

Same-day Terraform support for EC2 Predictive Scaling Policy

AWS is always bringing out new services, enhancing current ones; they are released at a pace that would be considered impossible even a couple of years ago. While this is awesome...
Penetration Testing – think and act like an attacker

Penetration Testing – think and act like an attacker

Organizations increasingly face the pressure to strengthen the security of their systems. Data protection is a hot topic for good reasons: to protect what's most important to them. Local security scans,...
Nomad 1.1

Announcing General Availability of HashiCorp Nomad 1.1

Nomad is one of Hashicorp’s products that I feel more people should take a look at. It offers a viable alternative or even a supplement to Kubernetes in that it orchestrates...
Terraform editions

Terraform editions explained: Cloud, Enterprise and OSS

Terraform is almost ubiquitous in the Infrastructure-as-Code market. It can be used to deploy Virtual Machines, Container Images, Networking, Storage constructs, even deploy to bare metal servers and deploy serverless functions....
Close your DevOps loop – Playbooks as Code can help

Close your DevOps loop – Playbooks as Code can help

DevOps is all about enriching your end-user experience. Continuous feedback to improve your applications is an important discipline. The faster you respond to (external) changes the better. Disruptions in production need...
Why Simple CICD reduces Friction and makes devs happy

Why Simple CI/CD reduces Friction and makes devs happy

For software development teams, one of the most important factors of an efficient and successful development process is frictionless CI/CD. While simple CI/CD reduces friction, getting to a point of 'simple'...
GitLab 2021 Global DevSecOps Survey

DevSecOps is not easy, but it is moving forward

DevSecOps is not easy but it is moving forward For the fifth year in a row, GitLab on May 4 2021 releases the DevSecOps report. The report is drawn up by requesting...