Our new homepage

Hi Security Friends,

We had this update in the works for a while and the new homepage is finally here. I’ll look at some of the updates and encourage you to reach out for future improvements.

We finally migrated from our old custom-built pages to Hugo and combined our frontpage, blog and documentation into one single repository. This is easier to maintain and to contribute to. Besides these technical improvements, we also worked on the user experience, a fresh front-page, and a new contributor page, and and improved baseline overview.

New contributor page

The DevSec project is driven by many contributors but it was not easily visible since the development is distributed over multiple repositories. Therefore, it was not easy to honor their contributions. We wrote a small script that uses the Github API to fetch all the information from each repositories and aggregated the results on a new community page. It shows all contributors, sorted by their contributions and a link to their github account.

New baseline views

For some time now, we have tracked our security guidelines in baselines that are independent from the DevOps automation tool. We use InSpec to define the baselines and to verify our Ansible, Chef, and Puppet remediation modules in an automatic way. Until today, it was challenging for users to see all baseline controls without looking into the baseline source code. Since we aim to enable everybody to understand and see our security guidelines, a new visualization was required.

We updated our existing feature overview and linked it to our new profile viewer.

You can click on each benchmark to see baseline details and their controls. In addition, you find the links for the Ansible, Chef and Puppet at the top of the baseline viewer.

We hope you enjoy these new views!

Have a hacky day, Chris