Red Hat and Oracle announced the general availability of Red Hat OpenShift on Oracle Cloud Infrastructure (OCI) Compute Virtual Machines (VMs).
Delinea Adds New Features to DevOps Secrets Vault
August 23, 2023
Delinea announced new features for DevOps Secrets Vault, Delinea's high-speed vault for DevOps and DevSecOps teams, to secure cloud-native applications.
An updated policy editor improves the ability for administrators to set more granular access controls for secrets used in code, greatly reducing the time and complexity of setting up secrets management for DevOps teams.
Delinea stores sensitive data like passwords, keys, and tokens (otherwise known as secrets) in a fortified high-speed vault with stringent access controls. DevOps Secrets Vault allows developers to dynamically inject secrets into their code, significantly mitigating the risk of potential credential theft, which can result in unauthorized access, without impacting performance.
The newly updated policy editor provides greater flexibility by incorporating simplified policies that a single DevOps architect or administrator can use to set standards for multiple applications across multiple DevOps teams. Previously only accessible in the Command Line Interface (CLI), the policy editor has been enhanced and made available in the Graphical User Interface (GUI) of DevOps Secrets Vault. The CLI is generally the preferred interface for developers, while the GUI provides IT administrators with the ability to intuitively create, edit, and delete policies and permissions documents.
Permissions documents are the building blocks for privileged access policies, and with this update administrators can create policies with multiple permission documents, providing more customization within policies than was available previously.
With these enhancements, administrators can set finer controls over using secrets in code while reducing the time spent creating and managing policies. These granular policies ensure that the secrets only have the permissions needed for their intended use.
"Many organizations are adopting strong DevOps practices to meet business needs and deliver better applications faster, putting pressure on DevOps teams to produce and update code more frequently, often at the cost of security," stated Phil Calvin, Chief Product Officer at Delinea. "Our continual updates to DevOps Secrets Vault ensure that our customers can quickly and easily create and manage more granular, secure access control policies for secrets across DevOps teams, reducing their attack surface without impacting developers' productivity."
Delinea combines open-source tools, best practices, and continual updates in its solutions to seamlessly implement secrets management and increase developer adoption. Additional updates in this release include enhancements to the GUI and CLI to improve usability and flexibility, allowing developers to continue to work in their preferred interface.
Industry News
May 06, 2024
The Software Engineering Institute at Carnegie Mellon University announced the release of a tool to give a comprehensive visualization of the complete DevSecOps pipeline.
May 06, 2024
Synopsys has entered into a definitive agreement with Clearlake Capital Group, L.P. and Francisco Partners.
May 02, 2024
Postman released v11, a significant update that speeds up development by reducing collaboration friction on APIs.
May 02, 2024
Sysdig announced the launch of the company’s Runtime Insights Partner Ecosystem, recognizing the leading security solutions that combine with Sysdig to help customers prioritize and respond to critical security risks.
May 02, 2024
Nokod Security announced the general availability of the Nokod Security Platform.
May 02, 2024
Drata has acquired oak9, a cloud native security platform, and released a new capability in beta to seamlessly bring continuous compliance into the software development lifecycle.
May 01, 2024
Amazon Web Services (AWS) announced the general availability of Amazon Q, a generative artificial intelligence (AI)-powered assistant for accelerating software development and leveraging companies’ internal data.
May 01, 2024
Red Hat announced the general availability of Red Hat Enterprise Linux 9.4, the latest version of the enterprise Linux platform.
May 01, 2024
ActiveState unveiled Get Current, Stay Current (GCSC) – a continuous code refactoring service that deals with breaking changes so enterprises can stay current with the pace of open source.
May 01, 2024
Lineaje released Open-Source Manager (OSM), a solution to bring transparency to open-source software components in applications and proactively manage and mitigate associated risks.
May 01, 2024
Synopsys announced the availability of Polaris Assist, an AI-powered application security assistant on the Synopsys Polaris Software Integrity Platform®.
April 30, 2024
Backslash Security announced the findings of its GPT-4 developer simulation exercise, designed and conducted by the Backslash Research Team, to identify security issues associated with LLM-generated code. The Backslash platform offers several core capabilities that address growing security concerns around AI-generated code, including open source code reachability analysis and phantom package visibility capabilities.
April 30, 2024
Azul announced that Azul Intelligence Cloud, Azul’s cloud analytics solution -- which provides actionable intelligence from production Java runtime data to dramatically boost developer productivity -- now supports Oracle JDK and any OpenJDK-based JVM (Java Virtual Machine) from any vendor or distribution.
