Farshad Discusses CI/CD Pipelines & Emerging Threats at Developer Week 2024

As modern software development practices evolve, CI/CD pipelines have emerged as a potent, yet under-secured frontier. This has resulted in a shift in focus from attackers, who are exploiting the traditionally overlooked vulnerabilities in the development pipelines. In this presentation, Farshad dove into the top CI/CD security risks as identified by OWASP. He looked at how each attack could be performed, explored potential impacts, and uncovered the motives of bad actors. This presentation provided pragmatic strategies to strengthen CI/CD security posture. The talk aimed to transform your CI/CD pipeline from a potential vulnerability into a cornerstone of your security infrastructure. View the slides below.