Results 51 to 60 of about 192 (158)
This paper introduces the Automated Zero Trust Risk Management with DevSecOps Integration (AZTRM-D) framework, a novel approach that embeds security throughout the entire Secure Software and System Development Life Cycle (S-SDLC).
Ian Coston +3 more
doaj +1 more source
NEA GitLab: A centralised platform for development and deployment of nuclear codes and data [PDF]
The NEA Data Bank is an international reference centre for computer codes, nuclear and thermochemical data which has traditionally used simple file servers, and even DVDs, to deliver valuable content to end users across the globe.
Stainer Thomas +7 more
doaj +1 more source
Propuesta de una Metodología basada en DevSecOps y SCRUM para el desarrollo de Software con Calidad.
La colaboración en equipos de desarrollo de software a menudo necesita una buena gestión de las actividades; con la aplicación de metodologías ágiles es posible administrar los cambios, sin embargo, una cultura de colaboración transversal en la ...
Itzel Xochitototl Cote +4 more
doaj +1 more source
DevSecOps for Microsoft .net [PDF]
L’objectif de ce document est de définir l’état de l’art du déploiement d’une application de façon automatisée et sécurisée sur la plateforme cloud de Microsoft Azure. Depuis quelques années, les questions de sécurité gagnent de l’importance dans le développement de logiciels. Les termes de Cyberattaques, ou hacking deviennent monnaies courantes dans l’
openaire
Companies are excited to maintain high-quality software while reducing the costs of production. DevOps is a contemporary software development life cycle paradigm in which development and operations teams join together during all stages of software ...
Jafar Ababneh +6 more
doaj +1 more source
Analysis of GitHub Advanced Security: Security Integration in GitHub and Azure DevOps
This paper examines the integration and operationalization of GitHub Advanced Security (GHAS) across GitHub and Azure DevOps to enhance DevSecOps practices in cloud-native software delivery.
Vladislav Manolov +2 more
doaj +1 more source
SafeOps+ is an open-source platform dedicated to automating security analysis and compliance in software development. Through a modular architecture combining a Python backend and React frontend, it integrates reference tools like Checkov and Semgrep to ...
Omar Achbarou +5 more
doaj +1 more source
The Potential of LLM-Generated Reports in DevSecOps
Alert fatigue is a common issue faced by software teams using the DevSecOps paradigm. The overwhelming number of warnings and alerts generated by security and code scanning tools, particularly in smaller teams where resources are limited, leads to desensitization and diminished responsiveness to security warnings, potentially exposing systems to ...
Nikolaos Lykousas +2 more
openaire +2 more sources
Introduction to the special issue on managing software processes using soft computing techniques. [PDF]
Khan AA, Abrahamsson P, Niazi M.
europepmc +1 more source
Este trabajo sale de la demanda de garantizar seguridad en los procesos de creación de las aplicaciones dentro de un entorno Multi Cloud. El objetivo principal es determinar cuáles son las prácticas más adecuadas que garantice una aplicación segura. Esta seguridad vincula dos factores.
openaire +1 more source

