[{"data":1,"prerenderedAt":26},["ShallowReactive",2],{"blog-tag-en-DevSecOps":3},[4,16],{"path":5,"title":6,"description":7,"date":8,"tags":9},"\u002Fblog\u002Fen\u002Fcicd-pipeline-security-devsecops","ci-cd Pipeline Security: A Practical DevSecOps Guide","A practical guide to ci-cd pipeline security from a DevSecOps perspective. Covers SAST\u002FDAST, supply chain protection, the SLSA framework, and Policy as Code.","2026-05-27",[10,11,12,13,14,15],"DevSecOps","ci-cd","Security","Supply Chain","SLSA","Kubernetes",{"path":17,"title":18,"description":19,"date":8,"tags":20},"\u002Fblog\u002Fen\u002Fdocker-security-scanning-best-practices","Docker Container Security: Scanning and Vulnerability Management","A practical guide to integrating vulnerability scanning into your container ci-cd pipeline. Compare Trivy, Snyk, and Grype, implement shift-left security, and build defense-in-depth with Harbor.",[21,12,22,23,24,25,10],"Docker","Vulnerability Scanning","Trivy","Snyk","Container Security",1779964624882]