GigaTap articles tagged cicd.
- Supply chain attacks punish long-lived secrets - AWS’s latest guidance is a reminder that package attacks become worse when CI/CD and developer environments expose durable credentials.
- Supply Chain Security Starts Before the Build - Sonatype’s playbook points to a practical shift: secure the inputs, pipelines, identities, and trust paths that produce software before release.