Which methodology integrates security practices directly into the DevOps pipeline for cloud applications?