Episode 425
Trivy-al Releases
Last week in security news: Dependency confusion in AWS CodeArtifact, this week's S3 Bucket Negligence Award, a new tool called Trivy, and more!
August 18, 20224m 30s
Audio is streamed directly from the publisher (dts.podtrac.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Links:
- Apparently there's been some dependency confusion in AWS CodeArtifact.
- PlatformQ wins this week's S3 Bucket Negligence Award
- Found an interesting article that suggests that ransomware in AWS isn't a purely theoretical concern.
- Protocol interview with AWS CISO CJ Moses about his cloud security challenges.
- AWS co-announces release of the Open Cybersecurity Schema Framework (OCSF) project
- Trivy is a security scanner for vulnerabilities in container images, Git repositories, filesystems, and various bits of configuration.
Topics
cloudawsamazondevopslast week in aws984841