35 Million Lines, Zero Build-Breakers: How Adyen Scaled DevSecOps

How do you secure a 35-million-line monolith without slowing down developers? For Adyen, the secret was decoupling dependency resolution from their core build system. In this session, Adyen’s Supun Vidana Pathiranage and JFrog’s Yonatan Arbel break down the architecture that enables scalable security scanning across a massive, multi-language monorepo. Key Takeaways:

• Architectural Patterns: Learn to gain visibility into custom build environments without a total system rewrite.
• The Battlestar Framework: How Adyen turns raw scan data into actionable feedback.
• JFrog Xray Integration: Deep dive into the design decisions behind their custom-built SCA pipeline.
• Shift-Left Enforcement: Implementing security gates at the Merge Request level to catch risks early.

Watch to learn proven strategies for modernizing your software supply chain and scaling DevSecOps in complex, real-world environments.