Question

  • Creator
    Topic
  • #3953037

    What good tools to scan for security vulnerabilities in CI/CD builds?

    Locked

    by selnahwy ·

    Looking for advice on good comprehensive tool to scan source code or software builds as part of CI/CD or before pipeline deployments or at least on demand every week. It needs to cover mobile, web, libraries, SDKs, APIs, etc.
    I have used Ostorlab before for scanning security vulnerabilities for mobile apps. Is there a recommended equivalent for .Net, Angular, node.js and other web dev stacks? Also, any recommendations on which ones best plug into the build process (CI/CD) preferably within Azure DevOps pipelines. Any advice is greatly appreciated.

All Answers

Viewing 1 reply thread