Visual Studio Magazine

Hardening CI/CD: Essential Strategies to Mitigate Security Risks

As CI/CD pipelines become foundational to modern software development, they also become high-value targets for attackers.
Analytics Insight

The Rise of Infrastructure as Code in Modern DevOps

Infrastructure as Code (IaC) has become essential in modern DevOps, enabling teams to define and manage infrastructure with ...
PC Magazine

Score a Free Guided Sonatype Demo and Scale Up Your DevOps Pipelines

Score a Free Guided Sonatype Demo and Scale Up Your DevOps Pipelines Take Sonatype Nexus Repository Cloud for a spin and see how it securely stores all your development tools and optimizes build ...
IEEE

Framework for Integrating Threat Modeling into a DevOps Pipeline for Enhanced Software Development

Abstract: In the realm of continuous integration and continuous deployment (CI/CD), safeguarding software systems is crucial. Integrating threat modeling into the DevOps pipeline ensures that security ...
GitHub

Intermittent token acquisition failure - "Could not fetch access token for Azure"

We are facing intermittent failures in token acquisition via MSAL when running Azure DevOps pipelines that deploy Web Apps using the AzureRmWebAppDeployment@5 task. Until September 5, 2025, all ...
GitHub

[Question]: Restricting Agent registration from Source

We are using self-hosted agents using Keda and hence running pods in a container. While registering the agent TOKEN is written to a file and users can exfiltrate the token and can register their own ...