R2Devops lauréat France 2030 – « Soutien aux PME et startups en cybersécurité »​

Nous sommes fiers d’annoncer que R2Devops fait partie des lauréats du programme France 2030 – NCC-FR Cyber, opéré par Bpifrance et l’ANSSI, qui vise à soutenir les PME et startups innovantes dans le domaine de la cybersécurité.

Ce soutien nous permet d’apporter une réponse claire à un enjeu encore sous-estimé : sécuriser un angle mort critique des systèmes d’information : les Pipelines CI/CD.

Avec l’appui de France 2030, nous allons accélérer le développement de nos solutions pour apporter plus de sécurité, de confiance et de conformité aux organisations.

Nous remercions chaleureusement Bpifrance et l’ANSSI pour leur confiance et leur accompagnement, ainsi que l’ensemble de l’écosystème France 2030 qui œuvre à bâtir une cybersécurité robuste et souveraine.

« Ce soutien est une étape qui nous permet de franchir un cap dans notre mission : aider les entreprises à sécuriser leurs environnements et se préparer aux standards de demain (ISO 27001, DORA, NIS 2) » — Aurélien COGET, CEO R2Devops

We are excited to introduce R2Devops 2.9! This release brings ISO 27001 compliance controls, AI-powered pipeline compliance, verification of project member role quotas, and an improved experience in issue page.

We are excited to introduce R2Devops 2.7! This release introduces scheduled recurring analysis, compliance control over merge request approvals, and an enhanced analysis issues experience to improve your workflow and security.

We are thrilled to introduce R2Devops 2.4! This release brings a new dashboard access for everyone, improved pipelines images registry resolution and simplified onboarding.

We are thrilled to introduce R2Devops 2.1! This release brings a powerful new policy for managing branch protection and access rights on projects, an enhanced method for controlling variable overrides, and improved compliance for pipeline composition.

Today, we are excited to announce the release of R2DevOps 2.0! This new version introduces an enhanced experience for defining supply chain policies, a brand-new issue dashboard, improved pipeline composition compliance, and much more!

Top 5 Software Supply Chain Security Incidents​

CI/CD (Continuous Integration and Continuous Deployment) pipelines have revolutionized software development, enabling rapid code integration, testing, and deployment. However, their growing complexity and reliance on automated processes have also introduced significant cybersecurity risks within the scope of the software supply chain. Below, we examine five of the highest-profile cybersecurity incidents involving CI/CD pipelines in the IT industry, highlighting the vulnerabilities and lessons learned.