Question
-
Topic
-
What good tools to scan for security vulnerabilities in CI/CD builds?
LockedLooking for advice on good comprehensive tool to scan source code or software builds as part of CI/CD or before pipeline deployments or at least on demand every week. It needs to cover mobile, web, libraries, SDKs, APIs, etc.
I have used Ostorlab before for scanning security vulnerabilities for mobile apps. Is there a recommended equivalent for .Net, Angular, node.js and other web dev stacks? Also, any recommendations on which ones best plug into the build process (CI/CD) preferably within Azure DevOps pipelines. Any advice is greatly appreciated.
All Answers
Viewing 1 reply thread