Using IAST to Unlock the Benefits of DevSecOps • Jeff Williams • YOW! 2022

  Рет қаралды 1,490

GOTO Conferences

GOTO Conferences

Күн бұрын

Пікірлер: 6
@jscancella
@jscancella Жыл бұрын
This sounds great, until he started talking about needing to deploy it to severs and clusters. I really had hoped I could run this in my cicd pipeline and stop the build if it finds things
@zartcolwing3218
@zartcolwing3218 Жыл бұрын
You can do exactly that. Just run your end-to-end tests within a testing environment instrumented with the IAST agents and stop the pipeline if the IAST agents report any security violation. At least it is as I understood it.
@Jump-n-smash
@Jump-n-smash Жыл бұрын
IAST solutions usually have powerful APIs so you can integrate them with CI/CD, ASOC, etc. You should be able to configure pipeline gates that depend on the findings of the IAST tool.
@danilaors
@danilaors Жыл бұрын
I would like to know iast tools that can I use in my cicd pipeline
@Jump-n-smash
@Jump-n-smash Жыл бұрын
@@danilaors seeker IAST
@erikklein7352
@erikklein7352 5 ай бұрын
@@danilaors Contrast has a very strong product. Ask your Performance Mgmt / Site Reliability / Operations teams if your company is already using Dynatrace for observability. There's Passive IAST, Runtime SCA, and RASP features in there that can be activated with zero install / configuration / maintenance if already there for observability.
Каха и лужа  #непосредственнокаха
00:15
HELP!!!
00:46
Natan por Aí
Рет қаралды 51 МЛН
Functional Programming in 40 Minutes • Russ Olsen • GOTO 2018
41:35
GOTO Conferences
Рет қаралды 817 М.
Cross-Site Scripting: A 25-Year Threat That Is Still Going Strong
9:33
Do NOT Learn Kubernetes Without Knowing These Concepts...
13:01
Travis Media
Рет қаралды 318 М.
GraphQL vs REST: Which is Better for APIs?
7:31
IBM Technology
Рет қаралды 208 М.
Cybersecurity Architecture: Application Security
16:36
IBM Technology
Рет қаралды 74 М.
Practical Aspects DevSecOps like a pro!
49:01
Prabh Nair
Рет қаралды 7 М.
🚀  TDD, Where Did It All Go Wrong (Ian Cooper)
1:03:55
DevTernity Conference
Рет қаралды 565 М.
Brian Chesky’s new playbook
1:13:28
Lenny's Podcast
Рет қаралды 332 М.