Developers are leveraging AI to accelerate the software development lifecycle, enabling them to automate repetitive coding tasks and generate substantial amounts of code in a fraction of the usual time. However, despite the numerous production advantages that AI has brought to organizations, it has simultaneously made it easier for less skilled hackers to infiltrate company systems with AI malicious code ...
Vendor Forum
May 13, 2025
Dwayne McDaniel
GitGuardian
You might not hear about Artifactory tokens in mainstream security discussions, but here's a troubling reality: these tokens are corporate security's hidden Achilles' heel. Unlike many leaked credentials that turn out to be harmless personal access tokens or defunct keys, Artifactory tokens almost always lead directly to critical corporate assets ...
May 08, 2025
Brian McHenry
Check Point Software
Security tools left running with weak configurations are a daily occurrence, as common as your morning brew. Breaches don't always start with flashy zero-days or clever phishing campaigns. They often begin with tools you trust; weak access controls, outdated configurations, and carelessness in setup make them prime targets for malicious actors ...
May 06, 2025
David Brooks
Copado
The concepts of "Shift Left" and "Shift Right" are well established in the DevOps world. But with the rise of AI Agents, a new paradigm is emerging: Shift Up. Intelligent agents are increasingly managing the tedious details of Application Lifecycle Management (ALM), from generating code and tests to automating deployments ...
May 05, 2025
Steve Winterfeld
Akamai
Proof is in the data from Akamai's new research State of Apps and API Security 2025: How AI Is Shifting the Digital Terrain. Overall, we see traditional web attacks targeting web applications and APIs continue to rise, as shown by a 65% increase between Q1 2023 and Q4 2024. This shows that the capabilities that are being developed are under increasing levels of attack ...
April 30, 2025
Pawel Hytry
Spacelift
Many infrastructure technology teams believe they have mastered automation, but the data tells a different story. According to a survey of 413 infrastructure decision-makers commissioned by Spacelift, 45% of organizations say they've achieved high levels of automation — yet only 14% demonstrate the patterns and practices of true infrastructure automation excellence ...
April 28, 2025
Jean-Louis Vignaud
Broadcom
For digital transformation leaders under pressure to drive measurable business outcomes, Value Stream Management has emerged as a proven framework to accelerate delivery, increase efficiency, and deliver greater customer value — all while reducing costs. According to a recent survey of IT and business leaders focused on digital transformation, 100% of respondents indicated they have implemented or are planning to implement VSM. This is representative of the larger trend of VSM adoption ...
April 24, 2025
Brian McHenry
Check Point Software
Imagine spending countless hours crafting a unique algorithm, only to have it stolen and used by someone else. Attackers use various strategies to pilfer source code, from social engineering tactics to malware; thankfully, these malicious tactics have viable and effective defense best practices ...
April 22, 2025
Rob Zuber
CircleCI
As today’s engineering teams are under immense pressure to find an edge, the ability to deliver high-quality software quickly and reliably has become a critical differentiator. Advancements like CI/CD automation, infrastructure as code, and AI-powered developer tools have raised the floor for what it means to be good at delivering software ...
April 21, 2025
Jason Beres
Infragistics
It can't be denied that AI is transforming how developers work, but it's not here to take your job — it's here to amplify your impact. Rather than replacing developers, AI enables developers to solve bigger problems much faster, which means that they can deliver more value in less time than ever imagined. Companies aren't looking to cut development teams; they're looking to supercharge them with AI-driven efficiency. The real opportunity isn't in resisting AI — it's in embracing AI ...
April 17, 2025
Simon Ritter
Azul
The latest Java release demonstrates a satisfying symmetry — JDK24 delivers exactly 24 JDK Enhancement Proposals (JEPs). Released on March 18, the newest update brings substantial improvements that address key operational challenges facing DevOps teams. With 14 production-ready features and 10 experimental and preview capabilities, JDK 24 offers meaningful enhancements for containerized deployments, microservices architectures, and cloud-native applications. Let's dive into the most significant changes that will reshape how DevOps teams tackle Java deployment challenges in modern production environments ...
April 16, 2025
Laura Kennedy
SmartBear
In today's push to launch faster, speed often takes precedence. But this only works if you're building the right product for your customers. Too often, the design phase of the product development lifecycle is rushed or reduced to UI mockups. When done right, this phase is where the success of your product is ultimately determined ... In my experience, these five best practices elevate the design phase from a checkbox to a strategic advantage, and they've made a measurable impact for the products I've helped deliver ...
April 15, 2025
Guillaume Aymé
Lenses.io
Building pipelines that can share data in real-time instead of batch across enterprise IT systems can drive faster and better innovation. Equipped with data that flows, like fresh water may flow, seamlessly between different applications and systems, developers can more easily come up with solutions that boost productivity, accelerate decision-making, enable better integrations, and more. This blog will explore why and how organizations should prioritize breaking down silos and moving to real-time data to turbocharge developers' capabilities ...
April 14, 2025
Chris Wysopal
Veracode
Enterprises across the world are under attack, and it's getting harder for them to defend themselves ... The regulatory pressures facing companies have made a difference. Recent data from Veracode's 2025 State of Software Security (SoSS) report shows that the percentage of applications passing the Open Worldwide Application Security Project (OWASP) Top 10 tests has increased by 63% over the past five years — a significant improvement. More notably, the prevalence of high-severity flaws has been cut in half over the past decade ...
April 10, 2025
Dave Roche
DigiCert
Software engineers are currently caught between a rock and a hard place. The rock? They're under record pressure to produce and release new software. The hard place? They're increasingly expected to account for the safety, security and provenance of every single software asset they use in those builds. That's demonstrated in the rise of the Software Bill of Materials (SBOM). These two clashing requirements are a source of great anxiety for software engineers ...
Pages
