Progress announced the launch of Progress Data Cloud, a managed Data Platform as a Service designed to simplify enterprise data and artificial intelligence (AI) operations in the cloud.
StepSecurity Launches GitHub Actions Security Platform
August 09, 2023
StepSecurity announced the launch of its GitHub Actions Security Platform to counter escalating cyber threats targeting CI/CD environments.
StepSecurity Platform offers GitHub Actions Security to protect against SolarWinds & Codecov-style CI/CD attacks
StepSecurity's platform targets GitHub Actions, a popular CI/CD provider among open-source projects and enterprises. Recognizing the platform's extensive adoption, StepSecurity has focused on fortifying security for users of GitHub Actions while also planning to expand its security platform to more CI/CD providers.
The StepSecurity Platform offers GitHub Actions Runtime Security to protect against SolarWinds & Codecov-style CI/CD attacks in GitHub-Hosted and Actions Runner Controller (ARC) environments. Once you deploy StepSecurity, it creates a secure-by-default CI/CD Environment. You get visibility into the network and file events associated with each step of your GitHub Actions workflow runs. You can further secure your environment by enforcing runtime security policies. For ARC environments, no code changes are needed to enable security observability and network traffic filtering.
Varun Sharma, CEO and Co-Founder of StepSecurity stated, "At StepSecurity, our approach to countering CI/CD attacks is rooted in comprehensive research and novel strategies. We have developed a solution based on first principles rather than merely applying outdated security approaches to this new, evolving problem."
The platform is free for open-source projects, with a paid subscription for private repositories.
Industry News
January 23, 2025
January 23, 2025
Sonar announced the release of its latest Long-Term Active (LTA) version, SonarQube Server 2025 Release 1 (2025.1).
January 23, 2025
Idera announced the launch of Sembi, a multi-brand entity created to unify its premier software quality and security solutions under a single umbrella.
January 22, 2025
Postman announced the Postman AI Agent Builder, a suite empowering developers to quickly design, test, and deploy intelligent agents by combining LLMs, APIs, and workflows into a unified solution.
January 22, 2025
The Cloud Native Computing Foundation® (CNCF®), which builds sustainable ecosystems for cloud native software, announced the graduation of CubeFS.
January 21, 2025
BrowserStack and Bitrise announced a strategic partnership to revolutionize mobile app quality assurance.
January 16, 2025
Mendix, a Siemens business, announced the general availability of Mendix 10.18.
January 16, 2025
Red Hat announced the general availability of Red Hat OpenShift Virtualization Engine, a new edition of Red Hat OpenShift that provides a dedicated way for organizations to access the proven virtualization functionality already available within Red Hat OpenShift.
January 16, 2025
Contrast Security announced the release of Application Vulnerability Monitoring (AVM), a new capability of Application Detection and Response (ADR).
January 15, 2025
Red Hat announced the general availability of Red Hat Connectivity Link, a hybrid multicloud application connectivity solution that provides a modern approach to connecting disparate applications and infrastructure.
January 15, 2025
Appfire announced 7pace Timetracker for Jira is live in the Atlassian Marketplace.
January 14, 2025
SmartBear announced the availability of SmartBear API Hub featuring HaloAI, an advanced AI-driven capability being introduced across SmartBear's product portfolio, and SmartBear Insight Hub.
January 14, 2025
Azul announced that the integrated risk management practices for its OpenJDK solutions fully support the stability, resilience and integrity requirements in meeting the European Union’s Digital Operational Resilience Act (DORA) provisions.
January 14, 2025
OpsVerse announced a significantly enhanced DevOps copilot, Aiden 2.0.
