4 Releasing secure code

This chapter covers

Exploring how organizations can release secure code
Explaining what a DevSecOps pipeline looks like
Looking at why DevSecOps supports security better than other release methods
Differentiating a DevOps model compared to other models
Discovering how to use a fast feedback loop for security issues

In this chapter, I will show some release methods that are in practice in most organizations. While each has its pros and cons, release methods such as DevOps can support a more secure method of delivering software. If you are not familiar with DevOps, it is a set of practices that bring together development and operations to deliver software in an efficient manner.

Definition Microsoft defines DevOps as a ...

Get Application Security Program Handbook now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Application Security Program Handbook by Derek Fisher

4 Releasing secure code

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly