Software security, from inside the pipelines.
I'm Jim ( more formally Dimitrios ) a DevSecOps / Application Security engineer who spends most of his time where security actually has to work: in CI/CD pipelines, supply chains, and the awkward gap between finding a vulnerability and fixing it.
This is where I write about that work. Expect notes on the things that don't fit neatly into a vendor datasheet