Oracle announced plans for Oracle Code Assist, an AI code companion, to help developers boost velocity and enhance code consistency.
Fugue added support for Google Cloud to its multi-cloud security platform.
With Fugue, cloud engineering and security teams can secure their entire cloud development lifecycle (CDLC)—from infrastructure as code to production—across their Amazon Web Services (AWS), Microsoft Azure, and now Google Cloud environments using the same Cloud Security Posture Management (CSPM) solution.
Fugue automates immediate and continuous security visibility and compliance reporting for cloud development and operations to prevent misconfiguration vulnerabilities and streamline previously time-consuming and resource-intensive tasks. Fugue support for Google Cloud initially includes 59 resource types and audit and reporting capabilities for the CIS Google Cloud Computing Platform Foundations Benchmark, CIS Controls, CSA CCM, GDPR, HIPAA, ISO 27001, NIST 800-53, PCI, SOC 2, and custom enterprise policies.
Fugue covers security and compliance at every stage of the CDLC—from Terraform and AWS CloudFormation infrastructure as code checks to continuous runtime protection and compliance auditing and reporting. Fugue provides deeper protection against the kinds of advanced multi-resource misconfigurations that are playing a larger role in modern cloud attacks and are often overlooked by other tools and compliance frameworks.
“More enterprise organizations are using multiple cloud service providers and infrastructure as code tools, and their teams need a way to move faster and more securely, regardless of which clouds they’re using, or how they’re developing and deploying cloud infrastructure,” said Josh Stella, Co-Founder and CEO of Fugue. “With the addition of Google Cloud support, teams can now use Fugue to apply the same compliance rules and custom security policies consistently across their entire cloud footprint and cloud development lifecycle—without slowing down the pace of innovation.”
With Fugue, every team—from developers to ops to security and compliance—shares a single source of trust in what’s allowed in their cloud environment using the Fugue Rules Engine, built with Open Policy Agent, the open standard for policy as code. Because Fugue takes continuous snapshots of cloud configuration state, all teams operate under a single source of truth in what’s running in their environment at all times. Fugue’s interactive cloud infrastructure maps enable teams to zoom in to inspect configuration details and compliance violations and zoom out to see the big picture of their environment, and export diagrams to include with audits.
Industry News
New Relic launched Secure Developer Alliance.
Dynatrace is enhancing its platform with new Kubernetes Security Posture Management (KSPM) capabilities for observability-driven security, configuration, and compliance monitoring.
Red Hat announced advances in Red Hat OpenShift AI, an open hybrid artificial intelligence (AI) and machine learning (ML) platform built on Red Hat OpenShift that enables enterprises to create and deliver AI-enabled applications at scale across hybrid clouds.
ServiceNow is introducing new capabilities to help teams create apps and scale workflows faster on the Now Platform and to boost developer and admin productivity.
Red Hat and Oracle announced the general availability of Red Hat OpenShift on Oracle Cloud Infrastructure (OCI) Compute Virtual Machines (VMs).
The Software Engineering Institute at Carnegie Mellon University announced the release of a tool to give a comprehensive visualization of the complete DevSecOps pipeline.
Synopsys has entered into a definitive agreement with Clearlake Capital Group, L.P. and Francisco Partners.
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
Nokod Security announced the general availability of the Nokod Security Platform.
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.