Operations | Monitoring | ITSM | DevOps | Cloud

canonical

The "scanner report has to be green" trap

Mar 27, 2026 By Lech Sandecki In Canonical
In the modern DevSecOps world, CISOs are constantly looking for signals in the noise, and the outputs of security scanners often carry a lot of weight. A security scan that returns a “zero CVE” report often unlocks promotion to production; a single red flag can block a release. This binary view of security has birthed two diametrically opposed philosophies. On one side, we have the long-term support (LTS) approach: stay on a battle-tested version and backport specific security fixes.
Read Post
grafana

Bridge the DevSec divide: Using Grafana Cloud and Miggo for runtime protection

Mar 17, 2026 By Jonathan Price In Grafana
Note: This blog post is co-authored by Daniel Shechter, CEO and co-founder of Miggo Security. Modern runtime security is critical to understand complex systems and detect and protect against attacks, especially in rapidly evolving cloud native architectures. For many security teams, however, achieving deep visibility into runtime risks remains a moving target.
Read Post
harness

Reimagining Artifact Management for DevSecOps: Harness Artifact Registry GA | Harness Blog

Feb 24, 2026 By Shankar Hariharan In Harness
Today, Harness is announcing the General Availability of Artifact Registry, a milestone that marks more than a new product release. It represents a deliberate shift in how artifact management should work in secure software delivery. For years, teams have accepted a strange reality: you build in one system, deploy in another, and manage artifacts somewhere else entirely. CI/CD pipelines run in one place, artifacts live in a third-party registry, and security scans happen downstream.
Read Post
harness

Transform your DevSecOps with Harness AI and Google Cloud

Oct 30, 2025 By Bala Venkatrao In Harness
Teams have always been under pressure to deliver software faster. But here's what we've learned from working with thousands of engineering teams: writing the code has never been the real bottleneck. It's everything that happens after - the testing, security scans, deployments, and optimizations that determine whether your innovations actually reach customers quickly and reliably. Even in the era of AI, the speed boost is uneven, creating the AI Velocity Paradox.
Read Post

Frog-Proof Security: Streamlining The Sec In DevSecOps

Oct 2, 2025 By JFrog In JFrog
What’s in store for Software Supply Chain security in 2026? With the types of software entering organizations ever-changing, and the volume ever-increasing, DevSecOps teams are facing new, and complex questions at macro and micro levels: How can teams effectively control and curate what enters systems? How can remediation be accelerated, while ensuring accuracy? How will the rising use of AI impact our threat landscape and can DevOps and Security teams truly share ownership of this emerging reality without adding friction?
View Video
puppet

Speed vs Security? In DevSecOps, You Can Have Both

Sep 4, 2025 By Puppet In Puppet
Speed vs security has long been treated as an impossible choice: move fast and risk instability, or stay safe and fall behind. For DevOps, DevSecOps, and Governance, Risk, and Compliance (GRC) leaders, that tension often plays out between the demand to ship updates quickly and the need to maintain airtight security and compliance.
Read Post

DevSecOps in Bitbucket Cloud | The Developer's Edge | Atlassian

May 8, 2025 By Atlassian In Atlassian
In this video, we’ll discuss how to implement DevSecOps workflows within Bitbucket. I’ll also explain our native security scanning tools, which help developers identify vulnerabilities before they deploy, and how platform teams set merge and deployment policies and enforce them at scale across the organization. About Atlassian: Behind every great human achievement, there is a team. From medicine and space travel to disaster response and pizza deliveries, we help teams all over the planet advance humanity through the power of software. Our mission is to help unleash the potential of every team.
View Video

Copyright © 2026 OpsMatters™. All rights reserved.