https://sven-ruppert.info/tags/devsecops/Recent content in Devsecops on Sven RuppertHugo -- gohugo.ioensven.ruppert@gmail.com (Sven Ruppert)sven.ruppert@gmail.com (Sven Ruppert)© 2026 Sven RuppertMon, 05 Feb 2024 17:49:29 +0000https://sven-ruppert.info/posts/contextual-analysis-in-cybersecurity/Mon, 05 Feb 2024 17:49:29 +0000sven.ruppert@gmail.com (Sven Ruppert)https://sven-ruppert.info/posts/contextual-analysis-in-cybersecurity/<p>Contextual analysis in cybersecurity involves examining events, actions, or data within the broader context of an organization&rsquo;s IT environment. It is a critical component of a proactive cybersecurity strategy, aiming to understand the significance of activities by considering various factors surrounding them. This multifaceted approach helps cybersecurity professionals identify and respond to potential threats effectively.</p>https://sven-ruppert.info/posts/introduction-to-the-linux-foundations-slsa-project/Sat, 10 Dec 2022 21:56:43 +0000sven.ruppert@gmail.com (Sven Ruppert)https://sven-ruppert.info/posts/introduction-to-the-linux-foundations-slsa-project/<p>Supply Chain Security is a hot topic these days. And more and more, we as developers are dealing with this daily. But what does this mean for us, and how is this influencing our job? I want to give an overview of common attacks against the Software Supply Chain from the developer&rsquo;s view and will introduce the Open Source project SLSA from the Linux Foundation.</p>https://sven-ruppert.info/posts/the-power-of-jfrog-build-info-build-metadata/Fri, 08 Oct 2021 13:42:05 +0000sven.ruppert@gmail.com (Sven Ruppert)https://sven-ruppert.info/posts/the-power-of-jfrog-build-info-build-metadata/<p><strong>Intro</strong></p> <p>This article will take a detailed look at what the term build-info is all about and why it will help us protect against attacks such as the Solarwinds Hack.</p>https://sven-ruppert.info/posts/solarwinds-hack-and-the-executive-order-from-mr-biden-and-now/Tue, 27 Jul 2021 11:10:15 +0000sven.ruppert@gmail.com (Sven Ruppert)https://sven-ruppert.info/posts/solarwinds-hack-and-the-executive-order-from-mr-biden-and-now/<p><a href="https://open.spotify.com/show/0rZHMLs9fWq1G0Q2DAQbc3" target="_blank" rel="noreferrer"><figure><img class="my-0 rounded-md" loading="lazy" decoding="async" fetchpriority="low" alt="" src="https://sven-ruppert.info/images/spotify-badge.svg" ></figure> </a></p> <p>In the past two years, we have had to learn a lot about cybersecurity. The new attack vectors are becoming more and more sophisticated and are directed more and more against the value chain in general. But what does that mean for us? What can be done about it, and what reactions have the state already taken?</p>https://sven-ruppert.info/posts/what-is-the-difference-between-sast-dast-iast-and-rasp/Mon, 19 Jul 2021 15:34:30 +0000sven.ruppert@gmail.com (Sven Ruppert)https://sven-ruppert.info/posts/what-is-the-difference-between-sast-dast-iast-and-rasp/<p><a href="https://open.spotify.com/show/0rZHMLs9fWq1G0Q2DAQbc3" target="_blank" rel="noreferrer"><figure><img class="my-0 rounded-md" loading="lazy" decoding="async" fetchpriority="low" alt="" src="https://sven-ruppert.info/images/spotify-badge.svg" ></figure> </a></p> <p><strong>Intro:</strong></p> <p>In this post, we&rsquo;re going to look at the differences between the various cybersecurity defence techniques. Here you can identify four main groups, which we will go through briefly one after another to illustrate the advantages and disadvantages.</p>