X
09Oct

Implementing Security to your DevOps Pipeline

Hi all, today in this post I'm gonna talk about "Implementing Security to your DevOps Pipeline using VSTS and White Source Bolt (DevSecOps)".
As we all know the trends that we are seeing out in the market, lot of buzz words are being heard and DevOps being 1 of them . People are adopting the process to deliver high value to their customers. As the definition goes "DevOps is the union of People, Process and Products to enable Continuous Delivery of value to our end users". While adopting the DevOps, it's not about going fast but also to look that you don't fall off a cliff. It's great to go fast but also check out for the security even before your code moves to the deployment environments. Implementing security is a big concern and a challenge as well. For example checking the vulnerable open source components, outdated libraries, license compliance issues  if any etc.
 
DevOps + automated security & compliance = Rugged DevOps
 
1
 
With Visual Studio Team Services, we can implement security to our DevOps pipeline using WhiteSource extensions as part of the build process. This ensures that if there are any vulnerabilities with the code, or the libraries that are being used, it detects and gives a catalogue where you can go and have a fix first and then safely push your code to the desired environments making sure that you are secured enough to go and deliver value to your end users without any security complaints.
 
Stay tuned for more information on setting up the pipeline....!
 

Related

VMSS deployment Using Custom VM Image

In this blog we will see the VMSS update by using an image with Rolling upgrade policy.Prerequisites...

Read More >

Azure DevOps - “Sign-in required” issue while trying to assign user to a work item

Scenario – You are trying to assign a work item to your colleague but unable to assign as it shows ...

Read More >

Roles in DevOps Mobile App Development

DevOps can be defined as an approach to enable seamless application delivery from inception to produ...

Read More >

What is DevOps and why Enterprises are serious about it?

The term DevOps is becoming increasingly familiar as more and more companies are interested in imple...

Read More >

How to Prevent Users from Moving Task to Closed State with a non-Zero value Remaining Work field in VSTS/TFS

In this Blog I am going to explain how we can customize Task in VSTS/TFS to Prevent Users from Movin...

Read More >

DevOps with Visual Studio Team Services for Java

Hi All, if you are worrying how to do DevOps for Java in VSTS, here is the solution. I’m going to e...

Read More >

VSTS Rollup Service - How to use

          Hi All, Here i'm going to explain How VST...

Read More >

VSTS Rollup Service - Setup

Hi All, if you are worrying how to calculate sum of the effort fields in VSTS, here is the solution....

Read More >

VSTS Area Uploader

VSTS Area Uploader helps you to upload Areas (with multiple level) to your VSTS Team Projects from a...

Read More >

VSTS Copy Dashboard Tool

The Copy Dashboard tool replicates/copies the existing dashboard from one team to either single or m...

Read More >

Share

Comments

Thanks for your post! Through your pen I found the problem up interesting! I believe there are many other people who are interested in them just like me! Thanks your shared!... I hope you will continue to have similar posts to share with everyone! I believe a lot of people will be surprised to read this article! Best DevOps online training in hyderabad
3/3/2020 6:17:49 PM | Reply

Post a Comment

  • Recent
  • Popular
  • Tag
Monthly Archive
Subscribe
Name

Text/HTML
Contact Us
  • *
  • *