Open bitkeks opened 9 months ago
@90n20 and @Seykotron created a proposal for the pipeline consisting of six tools:
This proposal was discussed and approved.
The current work consists of containerizing the applications. Further work will deploy the pipeline in Zuul.
Goals for R7:
As a CSP, I want to continuously scan my running infrastructure so that I discover security issues in a timely manner.
The implementation is based on a pipeline of security tools that are executed periodically. These tools scan the running infrastructure, similar to a DAST (dynamic app sec testing). The pipeline can be triggered when a new deployment is rolled out or via defined points in time.