December 2017
Intermediate to advanced
364 pages
7h 30m
English
Content preview from Security Automation with Ansible 2
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Source code analysis scanners
This is one of the first and common way to minimize the security risk while applications going to production. Source code analysis scanner also known as Static Application Security Testing (SAST) will help to find security issues by analyzing the source code of the application. This kind of tools and testing methodology allows developers to scan their code for security vulnerabilities repeatedly and automatically in the process of continuous integration/continuous delivery (CI/CD).
There are multiple stages we can introduce these tools to effectively identify security vulnerabilities like integrated with IDE (code editors such as Eclipse, Visual Studio Code, and so on) and integrating in CI/CD process tools (Jenkins, ...