Topic: appsec

“Doomsday” flaw discovered in RunC underscores potential for critical container vulnerabilities

The discovery of a major security flaw in the common open-source runtime engine for Docker, Kubernetes and other container management systems, points to an underlying risk associated with containerized applications. Researchers Adam Iwaniuk and Borys Popławsk discovered the vulnerability, CVE-2019-5736, in RunC, the common runtime engine developed by Docker and now a common Open Container … continue reading

Security and compliance in DevSecOps

In the space of time it takes you to read this blog post and finish your morning coffee, a company at the vanguard of DevSecOps, such as Etsy, Amazon or Netflix, will have completed yet another deployment – one of potentially thousands per day. Deployment frequency has accelerated to a pace that would have been … continue reading

Get access to this and other exclusive articles for FREE!

There's no charge and it only takes a few seconds.

Sign up now!