Willem Delbare, co-founder of Aikido Security, dives into the pressing challenges of DevSecOps for smaller teams and solo practitioners. He discusses how Aikido consolidates various security tools into a single platform, simplifying processes like CVE scanning and vulnerability management. The conversation highlights the importance of automation, contextual awareness, and integrating security into the CI/CD workflow. Willem also explores how AI can revolutionize vulnerability management and shares insights on minimizing notification overload for developers.
01:03:34
forum Ask episode
web_stories AI Snips
view_agenda Chapters
auto_awesome Transcript
info_circle Episode notes
question_answer ANECDOTE
Origin of Aikido
Willem Delbare obsessed about security as a technical co-founder, worried about being blamed for breaches.
His last company, despite being small, spent over $150k on enterprise security tools and still needed manual processes.
insights INSIGHT
Future of Security Tools
Security scanning tools are becoming commoditized, shifting the focus to auto-fixing.
The future of security tools lies in automated maintenance and agentic development.
volunteer_activism ADVICE
Autofixing Dependencies
Autofixing dependencies can be risky, especially major version bumps.
Aikido aims to mitigate this risk by showing how many other users successfully applied a patch.
Get the Snipd Podcast app to discover more snips from this episode
Or watch the video version on YouTube. Bret is joined by Willem Delbare and Roeland Delrue to discuss Aikido, a security tool consolidation platform designed specifically for smaller teams and solo DevOps practitioners.
🙌 My next course is coming soon! I've opened the waitlist for those wanting to go deep in GitHub Actions for DevOps and AI automation in 2025. I'm so thrilled to announce this course. The waitlist allows you to quickly sign up for some content updates, discounts, and more as I finish building the course. https://courses.bretfisher.com/waitlist 🍾
The discussion explores how Aikido addresses the growing challenges of software supply chain security by bringing together various security tools - from CVE scanning to cloud API analysis - under a single, manageable portal. Unlike enterprise-focused solutions, Aikido targets the needs of smaller teams and individual DevOps engineers who often juggle multiple responsibilities. During the episode, they demonstrate Aikido's capabilities using Bret's sample GitHub organization, and show how teams can implement comprehensive security measures without managing multiple separate tools.
DevOps and Docker Talk: Cloud Native Interviews and Tooling