Avatar photo
By: Glen Kosaka

September 17, 2020 11:46 am

952 views

NeuVector Integrates with Sonatype Nexus Lifecycle to Secure Containers Across the SDLC

As DevOps teams continue to ‘shift security left’ and build container security into the pipeline, integrated toolchains for managing security risk early in the software development lifecycle (SDLC) are becoming critical. The Sonatype Nexus Lifecycle integration with NeuVector enables developers and DevOps teams to manage software vulnerabilities throughout the entire SDLC and even into […]

Read More


Avatar photo
By: Gary Duan

July 9, 2020 12:04 pm

688 views

Use Cloud-Native Tools OPA and CRD to Protect Applications from Pipeline to Production

Application owners and IT administrators have been looking for tools that can help them secure their application pipeline, from the development stage to deployment and production. How to do this reliably and efficiently without slowing down development processes remains a big challenge. This is where Open Policy Agent (OPA) and Kubernetes Custom Resource Definitions (CRD) […]

Read More


Avatar photo
By: Glen Kosaka

July 26, 2018 12:12 pm

983 views

Automating Image Scanning with Jenkins

By Xiaofeng Sun Containers provide an easy and efficient way to deploy applications. But container images may contain open source code over which you don’t have a full control. Many vulnerabilities in open source projects have been reported, and you may decide to use these libraries with vulnerabilities or not after scanning the images […]

Read More