Nir Valtman, co-Founder and CEO at Arnica, discusses pipelineless safety with SE Radio host Priyanka Raghavan. They begin by defining pipelines after which take into account add safety. Nir lays out the important thing challenges in getting good code protection with the pipeline-based method, after which describes implement a pipelineless method and the benefits it affords. Priyanka quizzes him on the idea of “zero new hardcoded secrets and techniques,” in addition to some methods to guard GitHub repositories, and Nir shares examples of how a pipelineless method might assist in these eventualities. They then talk about false positives and dealing with developer fatigue in coping with alerts. The present ends with some dialogue across the product that Arnica affords and the way it implements the pipelineless methodology.
Associated Hyperlinks
Earlier SE Radio Episodes
References
-
What’s an sbom, what’s it not, and do you want one (weblog submit)
-
The best way to Scale back Code Threat Utilizing Pipelineless Safety
-
Arnica’s Actual-time Code Threat-Scanning Instruments Purpose to safe Provide Chain.html
Podcast: Play in new window | Obtain
Subscribe: Apple Podcasts |
Tags: cicd, code protection, safety