VMware Tanzu, profile picture
Uploaded byVMware Tanzu
794 views

Building a DevSecOps Pipeline Around Your Spring Boot Application

The document discusses building a DevSecOps pipeline for Spring Boot applications, emphasizing the integration of security into DevOps practices to address new risks from technologies like cloud and containers. It outlines two main security challenges: adapting existing security tools for new technologies and developing new security solutions. The importance of involving developers in security ownership and making security practices collaborative and automated is also highlighted.

Software
Related topics:
Software Developer

Embed presentation

Downloaded 28 times
Building a DevSecOps Pipeline Around your Spring Boot Application Spring One Platform, 2019 Simon Maple @hayleydenb
Building a DevSecOps Pipeline Around your Spring Boot Application Spring One Platform, 2019 Simon Maple Hayley Denbraver @hayleydenb
Send Simon nice tweets: @sjmaple @hayleydenb
Hello @hayleydenb
Hayley Denbraver Developer Advocate, Snyk @hayleydenb snyk.io
@hayleydenb
FYI ¯_(ツ)_/¯ @hayleydenb
DevSecOps for Spring Boot @hayleydenb
DevOps @hayleydenb
We all love DevOps! But Why? @hayleydenb
DevOps helps deliver value and address market needs faster and at scale @hayleydenb
What does “doing DevOps” mean? @hayleydenb
•DevOps Technologies •DevOps Methodologies •DevOps Shared Ownership @hayleydenb
DevSecOps @hayleydenb
•Securing DevOps Technologies •Security in DevOps Methodologies •Including Security in DevOps Shared Ownership @hayleydenb
•Securing DevOps Technologies •Security in DevOps Methodologies •Including Security in DevOps Shared Ownership @hayleydenb
Securing DevOps Technologies DevOps Created or Drove Adoption of new Technologies Cloud Containers Serverless Open Source Libraries @hayleydenb
Securing DevOps Technologies The adoption of these new technologies create two main security problems. @hayleydenb
Problem 1: How do we adapt our current tools to protect our DevOps projects @hayleydenb
@hayleydenb
@hayleydenb
@hayleydenb
Another trouble maker: containers! @hayleydenb
How do you identify malware or viruses in a container? @hayleydenb
End Point Protection via Container Host
How do you “patch your servers” in an ad-hoc, disposable container? @hayleydenb
Scan Container images for OS Vulnerabilities @hayleydenb
The need to adapt is an opportunity for new players @hayleydenb
Problem 2: New technologies introduce new security risk that require new security solutions. @hayleydenb
Cloud introduces the risk of unsecured buckets at an unprecedented scale. @hayleydenb
An Example • Consider Uber’s 2016 data breach • Attackers accessed the details of nearly 600,000 drivers • “Some personal info” on nearly 57 mil users was also compromised @hayleydenb
What happened? • Dev pushed S3 tokens to a private GitHub repo • Attackers gained access to repo, obtained tokens • At the time, Uber wasn’t using 2FA • Attackers used tokens to steal info from S3 @hayleydenb
An Interlude Please Use 2FA/MFA. Please. @hayleydenb
@hayleydenb
New platforms also mean new insecure configuration risks @hayleydenb
Default does not mean best @hayleydenb
Insecure Config Breaches
Cloud Security Config Static and Event Scan @hayleydenb
New risk from containers: Sandbox escaping! @hayleydenb
@hayleydenb
Security for DevOps Technologies 1. Adapt existing tools to new tech 2. Create new tools to address new problems @hayleydenb
•Securing DevOps Technologies •Security in DevOps Methodologies •Including Security in DevOps Shared Ownership @hayleydenb
Security in DevOps Methodologies CI/CD Microservices @hayleydenb
Traditional Approach • Write code for the added functionality • Turn code over to security for a review • Wait • Receive notes and issues from security that you must address • Redo a bunch of work to address changes. Play a prank on your security reviewer to vent your feelings. • Now it is Thanksgiving, so no one is around so wait some more • Release • Profit??? @hayleydenb
Continuous Integration/ Continuous Delivery @hayleydenb
Continuous Integration/ Continuous Delivery @hayleydenb
Continuous Integration/ Continuous Delivery @hayleydenb
• You keep your traditional security review and it causes a bottle neck in your CI/CD process meaning you don’t really get the benefits from CI/CD • You scrap the security review/or say you will do it later because you are moving too fast • You find a way to practice Continuous Security @hayleydenb
Automated App Sec Testing • We can automate app sec testing! • There are a few different ways to approach this. • Let’s talk about static and dynamic testing. @hayleydenb
Static Testing • Scan your code to find potential vulnerable code paths • Scans take hours (or days) to run != builds take minutes
 • Adaptation: incremental scans • Run long scans ~weekly • Run “Delta” scans in the build
 • Still a problem with false positives… different topic! @hayleydenb
Dynamic Testing • Tests a deployed instance like a hacker to find vulnerabilities • Scans require dedicated env… often doesn’t exist. • Scans take way too long to complete
 • Adaptation: • IAST - instrument app, run unit-tests, deduce security issues • Less comprehensive, but works with less overhead • Very imperfect… but sometimes work @hayleydenb
Open Source Known Vulnerabilities • Flag use of libraries with known vulnerabilities • “Break build” on vulnerability or otherwise alert • Fast & accurate - naturally CI/CD friendly… @hayleydenb
Microservices @hayleydenb
- Clear perimeter - Constrained flow - Wholesale deploys - Many perimeters - Flexible flow - Constant deploys @hayleydenb
Adaptions • Adaptation: Track data flows across apps @hayleydenb
Adaptions • Adaptation: Embed installation into deploy flow @hayleydenb
Opportunities There are positive changes too @hayleydenb
Opportunities When a container misbehaves… 
 Just kill it!
 (It’ll start up again in no time) @hayleydenb
Opportunities Continuous Deployments mean Fast security patch deployment!
 (contain risks faster and more safely than ever) @hayleydenb
Opportunities CI/CD means easy Automated security gating!
 (block secrets or vulns from passing, enforce policies, etc.) @hayleydenb
Security in DevOps Methodologies • Adapt current security practices • Take the opportunity to leverage automation and do security better @hayleydenb
•Securing DevOps Technologies •Security in DevOps Methodologies •Including Security in DevOps Shared Ownership @hayleydenb
DevSecOps includes security in the ownership model @hayleydenb
The Syrian Electronic Army and the Financial Times @hayleydenb
1. Phishing email to employees who
 had publicly shared their email Masked link to an 
 attacker controlled
 compromised site @hayleydenb
Developers were the 2nd most likely to click a link in a phishing email Internal Salesforce Phishing Test
 run by Masha Sedova (@modMasha) @hayleydenb
Compromising a
 high privileged developer 
 is hitting the jackpot @hayleydenb
2. Link redirects to 
 spoofed FT Single Sign-on
 page (for Google Apps) Some users entered their passwords… @hayleydenb
3. Attackers use compromised accounts to 
 Email more FT users
 this time from an FT email address More users are compromised… @hayleydenb
4. IT finds out, sends warning email to all.
 Attackers send identical email - with evil links @hayleydenb
5. Attackers gain access to several
 official Twitter accounts and blog @hayleydenb
“A sobering day”
 by Andrew Betts, 
 a compromised FT developer @hayleydenb
“Developers might well think they’d be wise to all this – and I thought I was.” https://labs.ft.com/2013/05/a-sobering-day/ @hayleydenb
DevOps means developers are more powerful than ever @hayleydenb
• Code is shipped at a fast pace • Developers access production systems daily • Developers access user data daily @hayleydenb
100:10:1 @hayleydenb
Developers cannot 
 outsource security. Nobody else can keep up. @hayleydenb
Developers believe
 dev should (co)own security Source: State of open source security
 https://snyk.io/blog/81-believe-developers-should-own-security-but-they-arent-well-equipped/ 68% of users feel 
 developers should own security responsibility of container images
Security tools are designed for security professionals @hayleydenb
Find or build security tools that developers will use @hayleydenb
Challenge: Security embraces Dev Dev Embraces Security @hayleydenb
Security • Provides devs with the tools (Dev tools!) and training they need to succeed • Sets a clear policy that is well documented, actionable • Acceptable vs. Unacceptable risk • Prioritization: What gets flagged vs. what fails the build • How are team members onboarded? • Available to support the team as security issues arise • Make issues actionable @hayleydenb
Developers • Use tools provided • Ask good questions and give feedback. • Understand and embrace the policy • Don’t fall into the SEP Field Trap @hayleydenb
–Douglas Adams, Life, the Universe and Everything “The Somebody Else's Problem field is much simpler and more effective, and what's more can be run for over a hundred years on a single torch battery. This is because it relies on people's natural disposition not to see anything they don't want to, weren't expecting, or can't explain.” @hayleydenb
Security in DevOps Ownership • Find a tool or tools that developers will actually adopt • Look for ways to engage devs in security @hayleydenb
DevOps helps 
 deliver value and adapt to market needs
 faster and at scale @hayleydenb
1. Securing DevOps Technologies 2. Security in DevOps Methodologies 3. Include Security in DevOps Shared Ownership @hayleydenb
Security For DevOps Technologies: 1. Adapt existing security tools to new tech 2. Address new security risks new tech introduced @hayleydenb
Security For DevOps Methodologies: 1. Adapt how existing security tools are applied 2. Use the new opportunities to do security better @hayleydenb
Include Security in DevOps Shared ownership: 1. Find security tools dev will actually use 2. Look for ways to engage dev in security @hayleydenb
To Close @hayleydenb
Java Security Resources @hayleydenb
Java Security Resources @hayleydenb
Java Security Resources @hayleydenb
Thank You! Hayley Denbraver, Developer Advocate hayley@snyk.io @hayleydenb

More Related Content

PPTX
Databricks Platform.pptx
byAlex Ivy
 
PDF
Standard Edition High Availability (SEHA) - The Why, What & How
byMarkus Michalewicz
 
PPTX
Apache Knox Gateway "Single Sign On" expands the reach of the Enterprise Users
byDataWorks Summit
 
PPTX
ODSC May 2019 - The DataOps Manifesto
byDataKitchen
 
PDF
Making Apache Spark Better with Delta Lake
byDatabricks
 
PDF
Data Democratization at Nubank
byDatabricks
 
PDF
A glimpse of cassandra 4.0 features netflix
byVinay Kumar Chella
 
PPTX
(Re)Indexing Large Repositories in Alfresco
byAngel Borroy López
 
Databricks Platform.pptx
byAlex Ivy
 
Standard Edition High Availability (SEHA) - The Why, What & How
byMarkus Michalewicz
 
Apache Knox Gateway "Single Sign On" expands the reach of the Enterprise Users
byDataWorks Summit
 
ODSC May 2019 - The DataOps Manifesto
byDataKitchen
 
Making Apache Spark Better with Delta Lake
byDatabricks
 
Data Democratization at Nubank
byDatabricks
 
A glimpse of cassandra 4.0 features netflix
byVinay Kumar Chella
 
(Re)Indexing Large Repositories in Alfresco
byAngel Borroy López
 

What's hot

PDF
Introduction SQL Analytics on Lakehouse Architecture
byDatabricks
 
PPTX
Building Data Pipelines for Solr with Apache NiFi
byBryan Bende
 
PPTX
Druid and Hive Together : Use Cases and Best Practices
byDataWorks Summit
 
PDF
Observability
byDiego Pacheco
 
PDF
How Netflix Is Solving Authorization Across Their Cloud
byTorin Sandall
 
PDF
Optimizing Hive Queries
byOwen O'Malley
 
PDF
AV/DF Advanced Security Option
byDLT Solutions
 
PPTX
Building the Data Lake with Azure Data Factory and Data Lake Analytics
byKhalid Salama
 
PPTX
Architectural changes in the repo in 6.1 and beyond
byStefan Kopf
 
PDF
Best practices for highly available and large scale SolrCloud
byAnshum Gupta
 
PPTX
Hadoop REST API Security with Apache Knox Gateway
byDataWorks Summit
 
PPTX
[DSC Europe 22] Lakehouse architecture with Delta Lake and Databricks - Draga...
byDataScienceConferenc1
 
PDF
Disaster Recovery Plans for Apache Kafka
byconfluent
 
PPTX
What is a Data Warehouse and How Do I Test It?
byRTTS
 
PDF
GoldenGate and Stream Processing with Special Guest Rakuten
byJeffrey T. Pollock
 
PPTX
Managing your Hadoop Clusters with Apache Ambari
byDataWorks Summit
 
PDF
Data Mesh
byPiethein Strengholt
 
PDF
Hive tuning
byMichael Zhang
 
PDF
Apache Kafka – (Pattern and) Anti-Pattern
byconfluent
 
PPTX
Monitoring with Dynatrace Presentation.pptx
byKnoldus Inc.
 
Introduction SQL Analytics on Lakehouse Architecture
byDatabricks
 
Building Data Pipelines for Solr with Apache NiFi
byBryan Bende
 
Druid and Hive Together : Use Cases and Best Practices
byDataWorks Summit
 
Observability
byDiego Pacheco
 
How Netflix Is Solving Authorization Across Their Cloud
byTorin Sandall
 
Optimizing Hive Queries
byOwen O'Malley
 
AV/DF Advanced Security Option
byDLT Solutions
 
Building the Data Lake with Azure Data Factory and Data Lake Analytics
byKhalid Salama
 
Architectural changes in the repo in 6.1 and beyond
byStefan Kopf
 
Best practices for highly available and large scale SolrCloud
byAnshum Gupta
 
Hadoop REST API Security with Apache Knox Gateway
byDataWorks Summit
 
[DSC Europe 22] Lakehouse architecture with Delta Lake and Databricks - Draga...
byDataScienceConferenc1
 
Disaster Recovery Plans for Apache Kafka
byconfluent
 
What is a Data Warehouse and How Do I Test It?
byRTTS
 
GoldenGate and Stream Processing with Special Guest Rakuten
byJeffrey T. Pollock
 
Managing your Hadoop Clusters with Apache Ambari
byDataWorks Summit
 
Data Mesh
byPiethein Strengholt
 
Hive tuning
byMichael Zhang
 
Apache Kafka – (Pattern and) Anti-Pattern
byconfluent
 
Monitoring with Dynatrace Presentation.pptx
byKnoldus Inc.
 

Similar to Building a DevSecOps Pipeline Around Your Spring Boot Application

PDF
AppSec How-To: Achieving Security in DevOps
byCheckmarx
 
PDF
The What, Why, and How of DevSecOps
byCprime
 
PPTX
Introduction to DevSecOps
byabhimanyubhogwan
 
PPTX
Overcoming the old ways of working with DevSecOps - Culture, Data, Graph, and...
byErkang Zheng
 
PPTX
Devops - Accelerating the Pace and Securing Along the Way - Thaddeus Walsh
byDrew Malone
 
PPTX
What it feels like to live in a Security Enabled DevOps World
byKarun Chennuri
 
PPTX
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...
byAnowar Hossain
 
PDF
Introduction to DevSecOps
bySetu Parimi
 
PDF
Why Security Engineer Need Shift-Left to DevSecOps?
byNajib Radzuan
 
PDF
Outpost24 webinar: Turning DevOps and security into DevSecOps
byOutpost24
 
PPTX
DevSecOps Best Practices-Safeguarding Your Digital Landscape
bystevecooper930744
 
PDF
Maturing DevSecOps: From Easy to High Impact
bySBWebinars
 
PPTX
Secure DevOPS Implementation Guidance
byTej Luthra
 
PDF
DevSecOps: The Open Source Way
byBlack Duck by Synopsys
 
PPTX
Shift Left for More Secure Apps with F5 NGINX
byNGINX, Inc.
 
PDF
Webinar–Creating a Modern AppSec Toolchain to Quantify Service Risks
bySynopsys Software Integrity Group
 
PDF
From DevOps to DevSecOps: Evolution of Secure Software Development
byScalaCode
 
PPTX
DevSecOps without DevOps is Just Security
byKevin Fealey
 
PDF
DevSecOps: What Why and How : Blackhat 2019
byNotSoSecure Global Services
 
PDF
DevSecOps Automation for Product Security
byITTSTAR Consulting, LLC.
 
AppSec How-To: Achieving Security in DevOps
byCheckmarx
 
The What, Why, and How of DevSecOps
byCprime
 
Introduction to DevSecOps
byabhimanyubhogwan
 
Overcoming the old ways of working with DevSecOps - Culture, Data, Graph, and...
byErkang Zheng
 
Devops - Accelerating the Pace and Securing Along the Way - Thaddeus Walsh
byDrew Malone
 
What it feels like to live in a Security Enabled DevOps World
byKarun Chennuri
 
DevOps to DevSecOps: Enhancing Software Security Throughout The Development L...
byAnowar Hossain
 
Introduction to DevSecOps
bySetu Parimi
 
Why Security Engineer Need Shift-Left to DevSecOps?
byNajib Radzuan
 
Outpost24 webinar: Turning DevOps and security into DevSecOps
byOutpost24
 
DevSecOps Best Practices-Safeguarding Your Digital Landscape
bystevecooper930744
 
Maturing DevSecOps: From Easy to High Impact
bySBWebinars
 
Secure DevOPS Implementation Guidance
byTej Luthra
 
DevSecOps: The Open Source Way
byBlack Duck by Synopsys
 
Shift Left for More Secure Apps with F5 NGINX
byNGINX, Inc.
 
Webinar–Creating a Modern AppSec Toolchain to Quantify Service Risks
bySynopsys Software Integrity Group
 
From DevOps to DevSecOps: Evolution of Secure Software Development
byScalaCode
 
DevSecOps without DevOps is Just Security
byKevin Fealey
 
DevSecOps: What Why and How : Blackhat 2019
byNotSoSecure Global Services
 
DevSecOps Automation for Product Security
byITTSTAR Consulting, LLC.
 

More from VMware Tanzu

PDF
Spring into AI presented by Dan Vega 5/14
byVMware Tanzu
 
PDF
What AI Means For Your Product Strategy And What To Do About It
byVMware Tanzu
 
PDF
Make the Right Thing the Obvious Thing at Cardinal Health 2023
byVMware Tanzu
 
PPTX
Enhancing DevEx and Simplifying Operations at Scale
byVMware Tanzu
 
PDF
Spring Update | July 2023
byVMware Tanzu
 
PPTX
Platforms, Platform Engineering, & Platform as a Product
byVMware Tanzu
 
PPTX
Building Cloud Ready Apps
byVMware Tanzu
 
PDF
Spring Boot 3 And Beyond
byVMware Tanzu
 
PDF
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
byVMware Tanzu
 
PDF
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
byVMware Tanzu
 
PDF
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
byVMware Tanzu
 
PPTX
tanzu_developer_connect.pptx
byVMware Tanzu
 
PDF
Tanzu Virtual Developer Connect Workshop - French
byVMware Tanzu
 
PDF
Tanzu Developer Connect Workshop - English
byVMware Tanzu
 
PDF
Virtual Developer Connect Workshop - English
byVMware Tanzu
 
PDF
Tanzu Developer Connect - French
byVMware Tanzu
 
PDF
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
byVMware Tanzu
 
PDF
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
byVMware Tanzu
 
PDF
SpringOne Tour: The Influential Software Engineer
byVMware Tanzu
 
PDF
SpringOne Tour: Domain-Driven Design: Theory vs Practice
byVMware Tanzu
 
Spring into AI presented by Dan Vega 5/14
byVMware Tanzu
 
What AI Means For Your Product Strategy And What To Do About It
byVMware Tanzu
 
Make the Right Thing the Obvious Thing at Cardinal Health 2023
byVMware Tanzu
 
Enhancing DevEx and Simplifying Operations at Scale
byVMware Tanzu
 
Spring Update | July 2023
byVMware Tanzu
 
Platforms, Platform Engineering, & Platform as a Product
byVMware Tanzu
 
Building Cloud Ready Apps
byVMware Tanzu
 
Spring Boot 3 And Beyond
byVMware Tanzu
 
Spring Cloud Gateway - SpringOne Tour 2023 Charles Schwab.pdf
byVMware Tanzu
 
Simplify and Scale Enterprise Apps in the Cloud | Boston 2023
byVMware Tanzu
 
Simplify and Scale Enterprise Apps in the Cloud | Seattle 2023
byVMware Tanzu
 
tanzu_developer_connect.pptx
byVMware Tanzu
 
Tanzu Virtual Developer Connect Workshop - French
byVMware Tanzu
 
Tanzu Developer Connect Workshop - English
byVMware Tanzu
 
Virtual Developer Connect Workshop - English
byVMware Tanzu
 
Tanzu Developer Connect - French
byVMware Tanzu
 
Simplify and Scale Enterprise Apps in the Cloud | Dallas 2023
byVMware Tanzu
 
SpringOne Tour: Deliver 15-Factor Applications on Kubernetes with Spring Boot
byVMware Tanzu
 
SpringOne Tour: The Influential Software Engineer
byVMware Tanzu
 
SpringOne Tour: Domain-Driven Design: Theory vs Practice
byVMware Tanzu
 

Recently uploaded

PDF
AI/ML Infra Meetup | Bringing Data to GPUs Anywhere + Get Low-Latency on Obje...
byAlluxio, Inc.
 
PDF
Threat Hunting with Garuda: From Manual Analysis to AI-Driven Hunting By Monn...
byCysinfo Cyber Security Community
 
PDF
The Evolution of Project Portfolio Management - What Modern PMOs Are Doing Di...
byOnePlan Solutions
 
PPTX
Key Benefits of Odoo Customization Services
byCandidRoot Solutions Private Limited
 
PPTX
Harnessing BUSY Software for Smart Business Management.pptx
byMoving Cloud
 
PPTX
Working of Minimax Algorithm with Alpha-Beta Pruning.pptx
byMuhammadHassanArshad2
 
PPTX
The Sync Strikes Back: Tales from the MOPs Trenches
bybbedford2
 
PPTX
Short Film Script Development Process HARMONIA
byzdolezalmedia
 
DOCX
Open Source BI Tableau Alternatives You Can Trust.docx
byVarsha Nayak
 
PPTX
BI and Reporting Software Turning Clinic Data Into Smarter, More Compassionat...
byEasy Clinic
 
PDF
DSD-INT 2025 REACT - Rapid E-flow Assessment and Communication Tool - Flores
byDeltares
 
PDF
A Complete Guide to Salesforce for Education.pdf
byVALiNTRY360
 
PDF
Custom MGA Software Development: Better Apporach
byOpenkoda
 
PDF
NYC ACE 12-Nov-2025-Combined Presentation.pdf
byAUGNYC
 
PDF
Startup Core Architecture: A Simple Practical Guide
byShiv Technolabs Pvt. Ltd.
 
PDF
DSD-INT 2025 The Singapore Regional Model in Delft3D FM - Zijl
byDeltares
 
PDF
How to Make Your AI Reliable: Comprehensive Guide to Testing AI Applications ...
byQATestLab Quality is a rule
 
PDF
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
PDF
Building Custom Insurance Applications With
byOpenkoda
 
PDF
AI/ML Infra Meetup | Open Source Michelangelo: Uber's Predictive to Generativ...
byAlluxio, Inc.
 
AI/ML Infra Meetup | Bringing Data to GPUs Anywhere + Get Low-Latency on Obje...
byAlluxio, Inc.
 
Threat Hunting with Garuda: From Manual Analysis to AI-Driven Hunting By Monn...
byCysinfo Cyber Security Community
 
The Evolution of Project Portfolio Management - What Modern PMOs Are Doing Di...
byOnePlan Solutions
 
Key Benefits of Odoo Customization Services
byCandidRoot Solutions Private Limited
 
Harnessing BUSY Software for Smart Business Management.pptx
byMoving Cloud
 
Working of Minimax Algorithm with Alpha-Beta Pruning.pptx
byMuhammadHassanArshad2
 
The Sync Strikes Back: Tales from the MOPs Trenches
bybbedford2
 
Short Film Script Development Process HARMONIA
byzdolezalmedia
 
Open Source BI Tableau Alternatives You Can Trust.docx
byVarsha Nayak
 
BI and Reporting Software Turning Clinic Data Into Smarter, More Compassionat...
byEasy Clinic
 
DSD-INT 2025 REACT - Rapid E-flow Assessment and Communication Tool - Flores
byDeltares
 
A Complete Guide to Salesforce for Education.pdf
byVALiNTRY360
 
Custom MGA Software Development: Better Apporach
byOpenkoda
 
NYC ACE 12-Nov-2025-Combined Presentation.pdf
byAUGNYC
 
Startup Core Architecture: A Simple Practical Guide
byShiv Technolabs Pvt. Ltd.
 
DSD-INT 2025 The Singapore Regional Model in Delft3D FM - Zijl
byDeltares
 
How to Make Your AI Reliable: Comprehensive Guide to Testing AI Applications ...
byQATestLab Quality is a rule
 
Combinatorial Interview Problems with Backtracking Solutions - From Imperativ...
byPhilip Schwarz
 
Building Custom Insurance Applications With
byOpenkoda
 
AI/ML Infra Meetup | Open Source Michelangelo: Uber's Predictive to Generativ...
byAlluxio, Inc.
 

Building a DevSecOps Pipeline Around Your Spring Boot Application