Synk and other cloud security vendors have focuses on container image registries as a weak link in the cloud-native application development workflow. Aqua Security, the Boston-based infrastructure security specialist, released a similar scanner earlier this year targeting Docker container images and Harbor, an open source container image registry project backed by the Cloud Native Computing Foundation.
In the never ending quest to bundle up all the steps in software development into the developer phase. It started by pulling in QA and product management with XP, project management with Scrum; operations, configuration management, release management, and monitoring with DevOps and then cloud native; security here. Sometime it’ll need to be compliance.
Original source: DevSecOps Emerges as a Cash Magnet