6 Implementing Security in the Build Phase of DevOps

The goal of the build phase is to make sure the code compiles successfully and is ready to use. Implementing DevSecOps for these phases should include checking for vulnerabilities in the code before it is compiled, protecting the build process against security vulnerabilities and misconfigurations that could compromise the integrity of the code, and ensuring that the compiled application does not contain any security vulnerabilities that could compromise system or user data.

By the end of this chapter, you will have a solid understanding of the following:

Hardening our build process to make it more secure
Integrating SAST, SCA, and secret scanning into the build process

Let’s get started! ...

Get DevSecOps for Azure now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

DevSecOps for Azure by David Okeyode, Joylynn Kirui

6

Implementing Security in the Build Phase of DevOps

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly