Scanning Infrastructure as Code (IaC) for vulnerabilities
In the modern world where it feels like every sentence has a Dev⭐Ops word in it, 1 that is probably used more than most is DevSecOps.
When teams focus on DevSecOps they make sure to integrate security into every phase of development, this includes scanning for vulnerabilities as soon as possible.
This videos shows you briefly how you can use Snyk to scan your terraform templates for vulnerabilities from your CLI as well as part of every commit pushed to GitHub.
⏲️ Timestamps...
00:00 - Intro
02:11 - Options for IaC security scanning
03:21 - Snyk CLI
06:03 - Snyk Web UI
03:21 - GitHub Actions workflow for Snyk Infrastructure
11:24 - Outro
🆘 Links From Video
================
https://aquasecurity.github.io/tfsec/
https://bridgecrew.io/pricing/
https://snyk.io/plans/
https://docs.snyk.io/snyk-cli/getting...
https://github.com/DevStarOps-org/Sca...
https://devstarops.com/blog/blogs/dev...
👀 General Links
=============
Twitter : / gordonbeeming
LinkedIn : / gordon-beeming
Profile : https://devstarops.com/
Blog : https://devstarops.com/blog/
Смотрите видео Scanning Infrastructure as Code (IaC) for vulnerabilities онлайн без регистрации, длительностью часов минут секунд в хорошем качестве. Это видео добавил пользователь Gordon Beeming 19 Декабрь 2022, не забудьте поделиться им ссылкой с друзьями и знакомыми, на нашем сайте его посмотрели 456 раз и оно понравилось 9 людям.