Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

add Automatic security assessment tool #15

Open
berez23 opened this issue Jan 11, 2021 · 0 comments
Open

add Automatic security assessment tool #15

berez23 opened this issue Jan 11, 2021 · 0 comments
Labels
documentation Improvements or additions to documentation enhancement New feature or request

Comments

@berez23
Copy link

berez23 commented Jan 11, 2021

Although automatic security assessment tools do not guarantee 100 % secure code they assure a good security posture.
My proposal would be a small guide that provides info on how to integrate this tool in the development phase.

SAST - Static Application Security Testing

  1. SAST IDE
  2. SAST at runtime code and Container
  3. SAST at CI code and Container

DAST: Dynamic Application Security Testing

  1. SAST at runtime
  2. SAST @ CI
@libremente libremente added documentation Improvements or additions to documentation enhancement New feature or request labels Jan 11, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
documentation Improvements or additions to documentation enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@berez23 @libremente