DeepFactor Blog
How Engineering Teams Go From Good to Great with Runtime Observability
Have you ever contemplated why some teams, whether they are sports teams or business teams or any kind of team, move from good to great? Is it luck or conscious effort? According to Jim Collins, author of Good to Great: Why Some Companies Make the...
Why aren't developers rushing to use observability?
Are there no observability tools purpose-built for developers?
You can't spot all vulnerabilities with only static code scans!
A static code scanner is not sufficient in today’s DevOps-microservices-containers-world. You need RUNTIME observability into the application’s security, privacy, and compliance. Developers need to know if their code or a 3rd party’s code can cause...
With the pressure to release fast, how in the world can developers ensure they're releasing secure code with no known vulnerabilities???
With today's modern apps, developers cannot be expected to keep abreast of all findings in the security space and go over source code of all dependencies to see if there are any vulnerable usages. There's just not enough time in the day...
DeepFactor's Key Take-Aways from DeveloperWeek 2021
DeepFactor is honored to have an article that covered one of our speaking sessions, Breaking News: DevSecOps is Broken Without RUNTIME Observability, published on InformationWeek.com.
DeepFactor Launches Observability-as-Code
Integrate Security Observability into CI Pipelines What’s the big news? DeepFactor launches Observability-as-Code with it’s latest product release v1.5. Similar to how ‘Infrastructure-as-Code’ enables DevOps engineers to orchestrate infrastructure...
How to detect code execution risks in your app by observing millions of live telemetry events
Detecting and remediating code execution risks is a key aspect of shipping secure applications, but several of these risks aren’t detected by SAST or DAST tools. What do you mean by ‘code execution risks’? We define code...
So you think you know the behavior of your containers? Would you stake your job on it?
WEBINAR: January 26th @11:00a.m. PT You’ve developed a fabulous application in a container/ Kubernetes Continuous Integration (CI) pipeline. The application works as it...
DAST & Observability: Made For Each Other!
DeepFactor seamlessly integrates Continuous Observability and OWASP ZAP to deliver powerful runtime security insights to developers. If you are thinking about only using a dynamic application security testing (DAST) tool in your...
DeepFactor + CircleCI: Supercharging Continuous Integration with Continuous Observability
Meet the newest orb in the CircleCI ecosystem: DeepFactor! DeepFactor delivers continuous observability for DevSecOps, enabling developers to rapidly find and triage runtime Security, Privacy, and Compliance risks in...
[webinar] Why is observability critical in your DevSecOps pipeline?
With Continuous Observability, developers can find and triage runtime security, compliance, and privacy risks within the DevOps pipeline while the application security team can set guardrails, receive alerts, and have...
Why can’t developers fully realize the promise of DevSecOps?
…Because we don’t enable them with the right security tools. Let me explain. As a developer, I take pride in the code I write and I also feel a sense of achievement when I release functionality that matters to our customers. However,...