All OpsCast Conversations
Search and filter through the complete archive of DevOps, Cloud Security, and Kubernetes discussions.
Scaling GitHub Actions for Enterprise DevOps: Security, Compliance, and Efficiency
In this episode, we dive into the world of GitHub Actions, exploring how to scale and secure this powerful CI/CD tool for enterprise DevOps. From reusable workflows and composite actions to SLSA Level 3 supply chain compliance, we'll cover the key considerations for senior engineers and architects. Join us as we examine the intersection of DevOps, security, and compliance in GitHub Actions.
Unlocking Code Excellence with SonarQube: Scaling SAST and CI/CD Security
Discover how SonarQube Enterprise can elevate your code quality and security posture by enforcing Quality Gates, customizing SAST rules, and integrating with popular CI/CD tools. Learn from experts how to leverage SonarQube for comprehensive code analysis and security hotspot triage. This episode dives into the nuances of SonarQube as a code scanner versus dedicated SAST tools and explores best practices for portfolio reporting and integration with GitHub, GitLab, and Azure DevOps.