CSOonline

AWS and Google Cloud command-line tools can expose secrets in CI/CD logs

Security researchers warn that certain commands executed in the AWS and Google Cloud command-line interfaces (CLIs) will return credentials and other secrets stored in environment variables as part of ...
Bleeping Computer

Google Cloud Build bug lets hackers launch supply chain attacks

Dubbed Bad.Build, this flaw could enable the threat actors to impersonate the service account for the Google Cloud Build managed continuous integration and delivery (CI/CD) service to run API calls ...
Digital Journal

This industry leader drives cloud adoption and security with containerization and CI/CD practices

Opinions expressed by Digital Journal contributors are their own. Advancements in Artificial Intelligence (AI) are generating significant buzz in the industry. The task to effectively manage delivery ...
Visual Studio Magazine

Threats from the Shadows: Securing the CI/CD Pipeline Against Modern Attacks

A deep dive into how attackers exploit overlooked weaknesses in CI/CD pipelines and software supply chains, and how .NET and ...