Sonarqube, Docker Scout, OWASP Dependency Check, Trivy. To my knowledge tools are instrumental in maintaining security and compliance throughout the development lifecycle, ensuring that code, containers, and dependencies are robust and secure.
@kuchambiatud708526 күн бұрын
SonarQube, Trivy, OWAPS, Prometheus and Grafana.
@sadeghrm516110 күн бұрын
Thank you so much for your informative video. I think you need to change Dockerfile and remove line "CMD ["nginx", "-g", "daemon off;"]" from it. Otherwise you get an error "nginx: invalid option: "nginx" and your container will be exited.
@MikeZadikАй бұрын
ZAP is not OWASP anymore. From Wikipedia: "As of August 1, 2023, the ZAP development team announced that ZAP was leaving the OWASP Foundation to join The Software Security Project, as a founding project [7][8] and henceforth will be simply called ZAP. "
@HarshitaAggarwal298 күн бұрын
My container is not running after adding cves and sbom commands. It's exiting instead of running when i execute the script. How to resolve this and get my container running?
@AnsonHopkins7 күн бұрын
why does DevSecOps positions require so much experience when it seems this simple? and great video by the way helped me a lot
@ranjansoumyab196315 күн бұрын
I completely agree on the statement made 16:40, I got more than a decade experience in securing DevOps but most organisation don't have this practice.
@pabloqp7929Ай бұрын
Awesome thanks!!
@realamrutpatil17 күн бұрын
Great video and explanation at the beginning of the video!
@Iamroot2725 күн бұрын
The link repo doesn’t exist
@DevOpsJourney24 күн бұрын
sorry, it was set to private. It's fixed now
@bababooey23297 күн бұрын
Great video, please more
@akshaygp1824 күн бұрын
Thank you for sharing your experience in detail and requesting you to make these kind of knowledgebase videos.
@samhaddisonАй бұрын
🎉 I loved every bit of the video. Clear and precise... watching all over again. Thanks a million... Waiting for part 2 😊
@kuchambiatud708526 күн бұрын
Hello, I came across this amazing video on DevSecOps and can anyone help me on where to find the github repo He mention in the video?
@DevOpsJourney26 күн бұрын
Here you go: github.com/devopsjourney1/DevSecOps-nginx
@Iamroot2724 күн бұрын
@@DevOpsJourneydoesn’t exist
@yyev89Ай бұрын
Thanks for the simple and clean explanation where to start with secops. Great tutorial!
@DK-vh5kt26 күн бұрын
Thank you for sharing an awesome video 🙂
@stanleychukwuАй бұрын
thank you sir!
@MadalinIgniscaАй бұрын
Pushing security towards developers. First improvement, ban AI coding tools.
@profh9382Ай бұрын
Can’t ban them, they will take all the white collar jobs. It’s just a soon to be fact. Unless this AI hype dies or startups in AI continue to implode.
@karanthakkar0420 күн бұрын
Just for some additional context what makes you say this?