- ‣ The United Nations Suffers a Data Breach, Exposing 100,000 Employee Details
- ‣ KubeSphere Extends Collaboration To Amazon Web Services
- ‣ Red Hat To Acquire StackRox and Bring To OpenShift Platform
- ‣ DataStax Releases K8ssandra – The Latest Production-Ready Platform for Running Apache Cassandra on Kubernetes
- ‣ AWS Launches Location Service, Opening New Opportunities For Developers
- ‣ GDPR Violations Lead To $66,000 Fine for Swedish University
- ‣ CloudLinux To Invest A Million Dollars Annually In Project Lenix
- ‣ Google Launches Machine Query Language in General Availability for Cloud Monitoring
- ‣ AWS Launches Service Workbench for Researchers
- ‣ AWS Batch Support Now Available for AWS Fargate
- ‣ Highest-Rated Cloud Computing Companies to Work For in 2021
- ‣ Mirantis Launches k0s - The Smallest, Simplest Kubernetes Distro
- ‣ AWS Fault Injection Simulator Improves Cloud Chaos Engineering
- ‣ China claims it’s quantum computer is 100 trillion times faster than any supercomputer
- ‣ Red Hat OpenShift to Support Windows Containers from 2021
- ‣ How Do Teams Automate Security in 2020?
- ‣ Github Releases 2020 State Of The OCTOVERSE Report
- ‣ Twitter Signs Agreement With AWS To Leverage The Public Cloud
How Do Teams Automate Security in 2020?
Dec. 21, 2020, 6:55 p.m. in DevSecOps
According to the 2020 State of the OCTOVERSE report, despite the pandemic forcing most people to work remotely, developers from all over the world came together to innovate, find connections, and solve problems. In the OCTOVERSE 2020 security report, Github highlights that since software and systems are evolving, the need to build new features to maintain the infrastructure is also increasing. While the attack surfaces are evolving, teams and projects are learning how to secure software and systems.
The report suggested that many developers use Open Source to create and build projects. Additionally, research by DORA found that elite performers are 1.75 times more likely to use Open Source software than low performers.
The OCTOVERSE report indicated that potential vulnerabilities found in source code scaled with the number of lines of code written.
The report suggests that automation made it easier to integrate security in the development stage. Repositories that automatically generated a pull request to update their fixed version patched their software significantly faster than those who did not.
Good automation and patching practices allow you to integrate security fixes into the development stage easily and safely, ensuring overall software security.
According to the 2020 OCTOVERSE Security report, automation provides developers an opportunity to secure their code. Automating security practices can help developers scale their expertise, remove security and engineering silos, and also share their expertise with the community.
The report states that a huge number of developers rely on Open Source components. The large community of developers who build software packages can also help identify and fix vulnerabilities, which will allow the software to be built quickly and more securely.
The report states that automated alerting and patching tools are a must to secure your software swiftly: Automation can help teams integrate security in the developmental stages to ensure high performance. Github analysis found that repositories that automatically generated a pull request to update to the fixed version patched their software in 33 days. This was 1.4 times faster or 13 days less than those who did not.
The report states that automating pull requests and having extensive continuous integration checks for security patches ensures faster software updates.
Obviously, the main conclusion of this report is how beneficial automation is to security hence the increasing adoption of DevSecOps in a multitude of companies.