OVO Tech Blog

Our journey navigating the techosphere


security ci/cd devops

GitOops! Attacking and defending CI/CD pipelines.

Posted on .

As part of our ongoing quest to improve the status quo of CI/CD security, we present GitOops: a tool to map CI/CD attack paths in a GitHub organization.…


security terraform aws ci/cd

Building a secure CI/CD pipeline for Terraform Infrastructure as Code

Posted on .

We created a model for automatically delivering infrastructure changes with robust security practices, and used it to build a secure Terraform CI/CD solution for AWS at OVO.…