Might be worth a while to create a picture/map of where infra. type scanner sit (eg. among static and dynamic code scanners ) . So the viewer dont simply think synk is all they ever need to defend against cyberattack on their code/app.
@technicolourmyles3 жыл бұрын
I'm writing my first Flask app right now, what other scanners/tests should I run on my code to check for vulnerabilities? Thank you!
@perrybj393 жыл бұрын
I'm soooo grateful for your amazing Chanel 👏!
@njain19852 жыл бұрын
Can I ask what tool are you using for recording and for editing your video? It's really professional work, Tim.
@nicholas_obert3 жыл бұрын
As for dependency vulnerabilities scanning, there's already the GitHub-built-in Dependabot. It scans your repos and sends the fixes as pull requests, plus sends you an email warning you about that security issue. I can't remember whether Dependabot is available also for non-pro GitHub accounts. Anyway, if you are a student you can get GitHub pro for free (and countless other benefits) with their student developer pack.
@LiranTal3 жыл бұрын
Just to highlight, Snyk is free for open source too, and even for private projects :-)
@brantechsyt61303 жыл бұрын
Great tutorial tim!
@acid666rain2 жыл бұрын
Super! Thank you so much!
@sohammarik4159 Жыл бұрын
Hey Tim, have you used SonarQube as an alternative? It would be great if we could have something on a comparison between Snyk and SonarQube too!
@varunvenugopal3 жыл бұрын
But it does report lot of false positives better to use other commercial tools if really concerned about the actual vulnerabilities in the source code, but yeah maybe good for smaller projects but not really for bigger projects which has lot of call graphs involved , also it does miss lot of true positives tooooo
@aarjavjain26753 жыл бұрын
Hey Tim can you make another flask blog tutorial?
@michealcronin5094 Жыл бұрын
Thanks bro, I learned a lot
@tee87863 жыл бұрын
So cool! Love this!
@muhammadanique22563 жыл бұрын
As a Django developer , do I really need to get into this? I just keeping getting into things without totally being an expert in any of it. Feels like I can skip this.
@THOTHO-ie5lz3 жыл бұрын
Well, you would want to stay competitive against other developers equiped with "ops" and "sec" skills set( dev/ope/sec).
@amjads8971 Жыл бұрын
Is it free / open source ?
@R-Kannada-DevOps Жыл бұрын
How to scan running docker container
@supertenchoo42713 жыл бұрын
Tim why you choose python over many language
@AchwaqKhalid Жыл бұрын
It's also available for *VSCode* too 🖥️
@ko-Daegu Жыл бұрын
doesn't work the extension is trash
@dhruvbhatia56453 жыл бұрын
Hey tim
@huyilanalana8393 Жыл бұрын
Great job. How can I contact you pls?
@helluci64493 жыл бұрын
Cover says "vunerabilities"
@deadchannel76373 жыл бұрын
Can you make a video about making telegram bot please ❤️❤️❤️
@shushmatalwadker83233 жыл бұрын
Thankssssssssss
@vibewithdan3 жыл бұрын
Vit Raid
@solarctp3 жыл бұрын
yo
@zachfenton6083 жыл бұрын
This is awesome. My best friend talks yo me about the importance of cyber security. Really good tool.
@gshap12582 жыл бұрын
I'm interviewing for a job in Snyk. Can you recommend what I should review for the technical interview?
@SkyFly198533 жыл бұрын
And I was wondering about it since they found malicious code in some Python repos recently...
@sebscripts7 ай бұрын
I have the POWER! Im the 1k like, Pin me
@rekhasurya35363 жыл бұрын
Hope Tim likes this comment 😊 Love your content btw Tim!
@vinhtannguyen4960 Жыл бұрын
give me your source code
@rudro3143 жыл бұрын
Very good topic
@eduardomunhoz15813 жыл бұрын
subtitles are wrong, whenever you say the name of the program the subtitles write "sneak" instead of "snyk"
@tcgvsocg14583 жыл бұрын
Thx a lot for all...bad summer happy viewer thx a lot tim