Dr. Ananya, Gupta and David, Wilson and Samir, Abdulrahman (2025) AI-Enhanced DevSecOps: Automating Vulnerability Management and Security Policy Enforcement in CI/CD Pipelines. Web of Semantics : Journal of Interdisciplinary Science, 3 (8). pp. 132-149. ISSN 2960-9550

Text AI-Enhanced DevSecOps Automating Vulnerability.pdf Download (411kB)

Abstract

The increasing adoption of cloud-native applications and continuous integration/continuous deployment (CI/CD) pipelines has accelerated software delivery but simultaneously expanded the attack surface for cyber threats. Traditional DevSecOps practices—while valuable—struggle to keep pace with the sheer scale and velocity of modern software development, particularly in identifying vulnerabilities and enforcing security policies in real time. Recent industry reports highlight the urgency of the challenge: Gartner predicts that by 2026, over 80% of software engineering organizations will establish dedicated platform teams to integrate security automation into CI/CD pipelines, while the IBM Cost of a Data Breach Report 2023 shows that breaches linked to unpatched vulnerabilities cost organizations an average of $4.45 million per incident.

Item Type:	Article
Subjects:	Q Science > QA Mathematics > QA75 Electronic computers. Computer science
Divisions:	Postgraduate > Master's of Islamic Education
Depositing User:	Journal Editor
Date Deposited:	03 Oct 2025 11:49
Last Modified:	03 Oct 2025 11:49
URI:	http://eprints.umsida.ac.id/id/eprint/16404

Actions (login required)

View Item