Fixing Issues from Code to Cloud in One Place
Identify security misconfigurations, vulnerabilities, and attack paths and fix them by correlating findings back to the deploy, build, and code artifacts.
Palo Alto Networks
CI/CD Security
The Evolution of Cloud-Native Application Security
Discover how application security has evolved and learn how to adapt your AppSec program to address cloud-native security issues relating to code, container, cluster, and CI/CD pipeline security.
Protecting Your Delivery Pipeline: Extensive CI/CD Security with Prisma Clo...
Learn how Prisma Cloud’s CI/CD Security enables organizations with pipeline posture management, visibility into their engineering ecosystem, attack path analysis and more.
Top 3 IAM Risks in Your GitHub Organization
Learn the top 3 IAM risks for GitHub Organizations, and discover practical tips to protect your organization with IAM for your source control management system.
Abusing Repository Webhooks to Access Internal CI/CD Systems at Scale
Learn how attackers abuse repository webhooks to gain access to Jenkins instances and discover CI/CD security tips to protect your pipelines from attack.
Poisoned Pipeline Execution (PPE): A Technical Deep Dive
Learn about the three most common types of poisoned pipeline execution (PPE) attacks and discover practical tips to protect your organization from these CI/CD-based attacks.
Visualizing Your CI/CD Ecosystem From an Attacker’s Perspective
Discover key CI/CD security insights and challenges our threat researchers uncovered as they explored the interconnected nature of CI/CD ecosystems and engineered CI/CD graphs.
How to Think About DevSecOps for a Secure Future
Despite the technological advances of recent years (or perhaps because of them), the number of threats on the internet continues to rise. In fact, a 2022 survey from ThoughtLab found that the number of breaches...
Exposed Credentials Across the DevSecOps Pipeline: 5 Places Secrets Hide in...
Developers leverage hardcoded credentials to seamlessly access or authenticate the services needed to build and deploy applications. While this practice streamlines development, it...
A Primer on Secure DevOps: Learn the Benefits of These 3 DevSecOps Use Case...
Learn best practices and benefits of taking a DevSecOps approach to AppSec, IaC security and software supply chain security.
Subscribe to the Blog!
Sign up to receive must-read articles, Playbooks of the Week, new feature announcements, and more.
By submitting this form, you agree to our Terms of Use and acknowledge our Privacy Statement. Please look for a confirmation email from us. If you don't receive it in the next 10 minutes, please check your spam folder.