July 2017
Beginner to intermediate
358 pages
10h 54m
English
If possible, security scanning should be integrated into the pipeline; we need to be catching bugs early and often. Regardless of whether your service is external facing or not, scanning it can ensure that there is a limited attack vector for an attacker to misuse. We have looked at fuzzing, and the time it can take to perform this task is quite considerable and possibly not suitable for inclusion inside a pipeline. However, it is possible to include various aspects of security scanning into the pipeline without slowing down deployments.
Read now
Unlock full access