A short issue this week, but with some detailed case studies on workflow management with Argo, securing software pipelines with IaC and policy and a modern monitoring stack amongst the posts.
StackHawk sponsors Devops Weekly
Upcoming Webinar: Deeper API Security Test Coverage. Learn how to configure API security testing using existing resources like Postman Collections, Cypress Test Scripts, and other DevTools to test your API endpoints. No API specs required!
A very interesting set of posts, looking at common questions around risk management security, viewed from the perspective of different audiences (CEOs/boards, CIO/CTOs, security teams and regulators).
A nice case study of solving a workflow management problem (backfilling data) using Argo Workflows.
A post looking at one advantage of infrastructure as code and standard components (in this case CI/CD and Tekton), using Kyverno to apply policy to help secure the pipeline.
A look at one organisations monitoring stack, based around Prometheus, Thanos and Grafana.
A reminder that managing software dependencies is difficult, with some information on public jquery exposure
cachegrand is an open-source fast, scalable and modular key-value store designed from the ground up to take advantage of modern hardware.