Skip to content
/ talk-dogfood-pipeline-ci Public

An AppSec cat attempts to eat the AppSec dog food: CI edition

License

MIT license
1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

xenloops/talk-dogfood-pipeline-ci

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

101 Commits
LICENSE
LICENSE
 
 
README.md
README.md
 
 
dep-check_demo.md
dep-check_demo.md
 
 
finale.md
finale.md
 
 
jenkins.md
jenkins.md
 
 
jenkins_demo.md
jenkins_demo.md
 
 
lessons_outcomes.md
lessons_outcomes.md
 
 
pipe_as_code.md
pipe_as_code.md
 
 
pipe_as_code_2.md
pipe_as_code_2.md
 
 
rationale.md
rationale.md
 
 
sast.md
sast.md
 
 
sca.md
sca.md
 
 
sonarqube_demo.md
sonarqube_demo.md
 
 
start_here.md
start_here.md
 
 

Repository files navigation

An AppSec cat attempts to eat the AppSec dog food: CI edition

Abstract

A common refrain in the application security profession these days is to meet developers where they work by embedding security tools into the SDLC. But just how much effort does it take to do this? How confident can you be in recommending a course of action you have not tried? This talk details the path the speaker took in implementing and exercising free and open-source security tools, and will include a basic how-to as well as lessons learned so you can do the same (and yes, that means actual documentation). It will include what is sure to be an entertaining live demo.

Talk given at UMSA Secure360/Career360 (9-10 May 2023)

Next slide

About

An AppSec cat attempts to eat the AppSec dog food: CI edition

Topics

jenkins pipeline sonarqube sca sast dependency-check

Resources

Readme

License

MIT license
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published