https://petemahon.net/tags/devsecops/Recent content in DevSecOps on PeteMahon.netHugoen-us<a href="https://creativecommons.org/licenses/by-nc/4.0/" target="_blank" rel="noopener">CC BY-NC 4.0</a>Tue, 24 Mar 2026 00:00:00 +0000https://petemahon.net/posts/cicd_checklist_trivy/Tue, 24 Mar 2026 00:00:00 +0000https://petemahon.net/posts/cicd_checklist_trivy/<h2 id="why-you-should-care-even-if-you-dont-know-what-cicd-is">Why You Should Care (Even If You Don&rsquo;t Know What CI/CD Is)</h2> <p>If your organisation builds software — or relies on software built by others (which is everyone) — there&rsquo;s a factory floor somewhere that assembles it. That factory floor is your CI/CD pipeline. CI/CD stands for Continuous Integration / Continuous Delivery, and it&rsquo;s the automated process that takes code written by developers, tests it, packages it, and ships it out to wherever it needs to go.</p>