Argon Blog

Thoughts, news, and musings from Software Supply Chain, CI/CD, and DevOps
experts, interviews, articles, and breach analyses.

Protecting Your Supply Chain: Why CI/CD Pipelines Need More Than SAST ...

SAST and DAST are security testing approaches that have served well for decades, and still have their place in a…

Eilon Elhadad
Jul 27 · 5 min read

Securing your GitLab: Best Practices To Implement

What is GitLab GitLab is a free open-source service designed to manage and share code in a distributed version control…

Eylam Milner
Jul 14 · 4 min read

President Biden’s Executive Order Demands Cybersecurity for Software...

The SolarWinds Attack Was the Industry’s Wakeup Call The new wave of software supply chain attacks that targeted SolarWinds, Codecov,…

Eran Orzel
Jun 23 · 5 min read

The importance of having visibility over your pipeline’s plugins...

Hardly a week goes by these days without hearing about a new supply chain attack. A recent headline featured yet…

Eilon Elhadad
Jun 21 · 4 min read

The Future of DevSecOps: Webinar Recap

The relevance of DevSecOps has grown in the past years as companies solidify their move towards automating their software delivery…

Nurit Bielorai
Jun 14 · 4 min read

Jenkins 101: Common Misconfigurations & How to best Secure it?

What is Jenkins and it’s Logo about? Jenkins is the most widely-used CI/CD tool today. As the world moves from…

Eylam Milner
Jun 07 · 4 min read

Looking to harden your security posture?

open source vulnerability scanner