Scanning Infrastructure as Code (IaC) for vulnerabilities
In the modern world where it feels like every sentence has a Dev⭐Ops word in it, 1 that is probably used more than most is DevSecOps.
When teams focus on DevSecOps they make sure to integrate security into every phase of development, this includes scanning for vulnerabilities as soon as possible.
This videos shows you briefly how you can use Snyk to scan your terraform templates for vulnerabilities from your CLI as well as part of every commit pushed to GitHub.
⏲️ Timestamps...
00:00 - Intro
02:11 - Options for IaC security scanning
03:21 - Snyk CLI
06:03 - Snyk Web UI
03:21 - GitHub Actions workflow for Snyk Infrastructure
11:24 - Outro
🆘 Links From Video
================
https://aquasecurity.github.io/tfsec/
https://bridgecrew.io/pricing/
https://snyk.io/plans/
https://docs.snyk.io/snyk-cli/getting...
https://github.com/DevStarOps-org/Sca...
https://devstarops.com/blog/blogs/dev...
👀 General Links
=============
Twitter : / gordonbeeming
LinkedIn : / gordon-beeming
Profile : https://devstarops.com/
Blog : https://devstarops.com/blog/
Watch video Scanning Infrastructure as Code (IaC) for vulnerabilities online without registration, duration hours minute second in high quality. This video was added by user Gordon Beeming 19 December 2022, don't forget to share it with your friends and acquaintances, it has been viewed on our site 456 once and liked it 9 people.