Topics include Supply Chain Security, Vulnerability Management, Neat Tricks, and Contributor insights.
Saturday, March 30, 2024 in Ortelius Committer Insights
Creating the Next Generation AI DevSecOps Pipeline As IT teams strive to bolster software supply chains against hidden vulnerabilities in open-source and third-party components, the demand for smart, streamlined, and automated DevSecOps pipelines is …
Wednesday, March 27, 2024 in Ortelius Committer Insights
What is Threat Modeling? - Basic Concepts to Get You Started In a data-driven world digital security and awareness are vital for people, academy, industry, and government. A cyberattack can take away more than your breath. It can take away your …
Tuesday, March 26, 2024 in Ortelius Committer Insights
Exposing Vulnerabilities by Peeling the SecOps Onion How do you peel an onion? Normally, you would peel an onion layer by layer and that’s precisely what Ortelius can do for you minus the crying bit. The security landscape is treacherous. We …
Wednesday, February 28, 2024 in Ortelius Committer Insights
In the modern DevSecOps world, we are often building the system (plane) as it is flying; at least that is the saying. The point of this adage is that we often build as we go and without any documentation, including making sure that we’ve thought …
Monday, April 10, 2023 in Ortelius Committer Insights
First - Don’t Get Overwhelmed Are you interested in becoming an Open Source Project contributor but feeling a bit overwhelmed with getting started? If so, don’t worry, because you’re not alone. Many developers feel the same way …
Friday, March 31, 2023 in Ortelius Committer Insights
More Complexity in the Software Supply Chain The rise of open-source software has increased the complexity of the software supply chain, making it essential to have a complete understanding of the dependencies and vulnerabilities within the …
Tuesday, March 28, 2023 in Ortelius Committer Insights
What are SBOMs and Why are They Important? Simply put, an SBOM is a Software Bill of Materials, i.e. a list of what components were used in constructing a particular application or microservice. Those components may be open source libraries and/or …
Wednesday, March 22, 2023 in Ortelius Committer Insights
Ortelius and the Consumption of SBOMs Core to the effort of hardening your software development process is SBOM generation and SBOM Consumption. Software Bill of Materials (SBOM) reports are a critical tool in understanding all of the parts of your …
Wednesday, March 08, 2023 in Ortelius Committer Insights
Enter the Dragon CKA This is my blog post about taking on the CKA in the spirit of Bruce Lee based on his film Enter the Dragon a Kung Fu cult classic. The CKA was my dragon which I was determined to conquer which I did on 27 March 2023. I have …
Tuesday, March 07, 2023 in Ortelius Committer Insights
Introduction The software supply chain is a model for producing quality products with an integrated lifecycle of upstream and downstream dependencies. A Software Bill of Material (SBOM) is a key component of the software supply chain. SBOM adoption …