In this talk, we will delve into the critical topic of securing GitOps pipelines in modern developer environments. Specifically, we'll look at modern development workflows, and opportunities for security at each step. We'll explore the challenges and benefits of using open source tools versus vendor solutions, and discuss strategies for getting things done while maintaining security. Attendees will come away with a deeper understanding of how to effectively secure GitOps pipelines, and gain insights into the latest trends and best practices for modern SDLCs. Whether you're a developer, security professional, or DevOps practitioner, this talk is a must-attend for anyone looking to automate and scale their security with git workflows.