DevSecOps is an emerging paradigm in the software development field in recent years, aiming to integrate security into the DevOps (Development and Operations) process. With the increasing awareness of cybersecurity risks, balancing software quality and security in an agile development environment has become a major challenge.

Based on open-source software, the DTRI of Institute for Information Industry has launched an integrated DevSecOps toolchain. This toolchain injects automated security scanning into key stages of continuous integration, continuous deployment, and continuous delivery, enabling developers and operations personnel to promptly identify and patch potential vulnerabilities, effectively enhancing the overall security of products.

For more information, please visit https://www.iiidevops.org/.