Building an OSS CI/CD Security Toolchain
Kevin Glavin
Bio: Coming from a background in web development, Kevin has centered his attention on leading secure code review initiatives and injecting security into Continuous Integration and Continuous Deployment. He believes that security practices must enable developers to write and deploy secure code rather than restrict them from deploying insecure code, and holds the unpopular opinion that DevOps/Agile and security are not mutually exclusive. When Kevin isnt elbows-deep in code, he works to ensure that his daughters first language is Python with a secondary focus in English (documentation is a necessary evil after all), forces his autocorrect to believe that _composable toolchains” is a valid phrase and can occasionally be found exploring the many mountain bike trails of Western Pennsylvania.
If you would like to republish one of the articles from this site on your webpage or print journal please contact IronGeek.
Copyright 2020, IronGeek