cloudnative wiki
Search
Search
Dark mode
Light mode
Explorer
Tag: devsecops
28 items with this tag.
Jun 16, 2026
M01: DevSecOps Mindset & Principles
devsecops
stage0
foundations
culture
shift-left
Jun 16, 2026
M02: Threat Modeling for DevSecOps
devsecops
stage0
foundations
threat-modeling
stride
attack-trees
Jun 16, 2026
M03: Secure SDLC
devsecops
stage0
foundations
sdlc
secure-development
gates
Jun 16, 2026
M04: Security Requirements & Acceptance Criteria
devsecops
stage0
foundations
requirements
acceptance-criteria
data-classification
Jun 16, 2026
Stage 0 — Foundations
devsecops
stage0
foundations
hub
Jun 16, 2026
M05: Static Application Security Testing (SAST)
devsecops
stage1
code
sast
semgrep
sonarqube
codeql
Jun 16, 2026
M06: Secrets Detection & Prevention
devsecops
stage1
code
secrets
gitleaks
trufflehog
vault
prevention
Jun 16, 2026
M07: Software Composition Analysis (SCA) & Dependency Scanning
devsecops
stage1
code
sca
dependencies
trivy
snyk
dependabot
renovate
cve
Jun 16, 2026
M08: SBOM Generation & Consumption
devsecops
stage1
code
sbom
spdx
cyclonedx
sigstore
supply-chain
Jun 16, 2026
Stage 1 — Code
devsecops
stage1
code
hub
Jun 16, 2026
M09: Container Image Scanning & Hardening
devsecops
stage2
build
containers
docker
distroless
trivy
grype
hardening
Jun 16, 2026
M10: Infrastructure-as-Code Security
devsecops
stage2
build
iac
terraform
checkov
tfsec
terrascan
pulumi
cdk
Jun 16, 2026
M11: CI/CD Pipeline Hardening
devsecops
stage2
build
cicd
github-actions
gitlab
jenkins
runners
hardening
Jun 16, 2026
Stage 2 — Build
devsecops
stage2
build
hub
Jun 16, 2026
M12: Pipeline Identity & OIDC Federation
devsecops
stage3
deploy
oidc
iam
irsa
wif
workload-identity
cicd-auth
Jun 16, 2026
M13: Artifact Signing
devsecops
stage3
deploy
signing
cosign
sigstore
sigstore-fulcio
rekor
slsa
Jun 16, 2026
M14: Supply Chain Attestations & SLSA
devsecops
stage3
deploy
slsa
attestations
in-toto
sigstore
supply-chain
provenance
Jun 16, 2026
M15: Policy-as-Code
devsecops
stage3
deploy
opa
kyverno
rego
cel
policy-as-code
admission-control
Jun 16, 2026
Stage 3 — Deploy
devsecops
stage3
deploy
hub
Jun 16, 2026
M16: Runtime Secret Management
devsecops
stage4
runtime
secrets
vault
external-secrets-operator
sealed-secrets
workload-identity
Jun 16, 2026
M17: Runtime Detection & Response
devsecops
stage4
runtime
falco
wazuh
detection
runtime-protection
shift-right
Jun 16, 2026
M18: Compliance Evidence & Audit Trail
devsecops
stage4
runtime
compliance
soc2
iso27001
pci-dss
evidence
audit
Jun 16, 2026
M19: Incident Response in CI
devsecops
stage4
runtime
incident-response
ir
chaos
game-day
blameless
Jun 16, 2026
M20: Capstone — End-to-End Secure Pipeline
devsecops
stage4
runtime
capstone
end-to-end
slsa
signed
audited
Jun 16, 2026
Stage 4 — Runtime
devsecops
stage4
runtime
hub
May 24, 2025
Security
security
zero-trust
devsecops
May 24, 2025
DevSecOps
devops
security
devsecops
ci-cd
May 24, 2025
DevSecOps
devsecops
shift-left
security
ci-cd