DevSecops
- Refer Here for xebia periodic table of devops tools
Code Security
- Atleast 80% of the attacks now being leverage at the application layer, so continuous security becomes a strategic effort ti find and remediated issues in unsafe code.
- Automated Security checks can identify these errors early in the process before the unsecured code is even pushed into repository
- Create an account in fortify for 15 days trail version Refer Here
- Follow the video from classroom to understand the scans done on the developers system before pushing the code to source code repository
- Fortify scan is failing will be fixed and shown in the next session.