09Oct

Implementing Security to your DevOps Pipeline

Hi all, today in this post I'm gonna talk about "Implementing Security to your DevOps Pipeline using VSTS and White Source Bolt (DevSecOps)".
As we all know the trends that we are seeing out in the market, lot of buzz words are being heard and DevOps being 1 of them . People are adopting the process to deliver high value to their customers. As the definition goes "DevOps is the union of People, Process and Products to enable Continuous Delivery of value to our end users". While adopting the DevOps, it's not about going fast but also to look that you don't fall off a cliff. It's great to go fast but also check out for the security even before your code moves to the deployment environments. Implementing security is a big concern and a challenge as well. For example checking the vulnerable open source components, outdated libraries, license compliance issues  if any etc.
 
DevOps + automated security & compliance = Rugged DevOps
 
1
 
With Visual Studio Team Services, we can implement security to our DevOps pipeline using WhiteSource extensions as part of the build process. This ensures that if there are any vulnerabilities with the code, or the libraries that are being used, it detects and gives a catalogue where you can go and have a fix first and then safely push your code to the desired environments making sure that you are secured enough to go and deliver value to your end users without any security complaints.
 
Stay tuned for more information on setting up the pipeline....!
 

Related

Roles in DevOps Mobile App Development

DevOps can be defined as an approach to enable seamless application delivery from inception to produ...

Read More >

What is DevOps and why Enterprises are serious about it?

The term DevOps is becoming increasingly familiar as more and more companies are interested in imple...

Read More >

How to Prevent Users from Moving Task to Closed State with a non-Zero value Remaining Work field in VSTS/TFS

In this Blog I am going to explain how we can customize Task in VSTS/TFS to Prevent Users from Movin...

Read More >

DevOps with Visual Studio Team Services for Java

Hi All, if you are worrying how to do DevOps for Java in VSTS, here is the solution. I’m going to e...

Read More >

VSTS Rollup Service - How to use

          Hi All, Here i'm going to explain How VST...

Read More >

VSTS Rollup Service - Setup

Hi All, if you are worrying how to calculate sum of the effort fields in VSTS, here is the solution....

Read More >

VSTS Area Uploader

VSTS Area Uploader helps you to upload Areas (with multiple level) to your VSTS Team Projects from a...

Read More >

VSTS Copy Dashboard Tool

The Copy Dashboard tool replicates/copies the existing dashboard from one team to either single or m...

Read More >

Dashboard Migrator Tool

This is a web service which helps you to copy the VSTS dashboards from 1 team to another team easing...

Read More >

VSTS Team project Monitor

Let us discuss how to install VSTS team project monitor and how we can make use of it easily.Particu...

Read More >

Share

Post a Comment

  • Recent
  • Popular
  • Tag
Tags
Monthly Archive
Subscribe
Name

Contact Us
  • *
  • *