Add templates for scanning in Cloud platforms

fortify / IWA-Java

Insecure Web + API application with example Fortify integrations into many DevSecOps and CICD platforms

GNU General Public License v3.0

2 stars 40 forks source link

Add templates for scanning in Cloud platforms #22

Open dylanbthomas opened 1 year ago

dylanbthomas commented 1 year ago

Add reference DevSecOps templates for integrated SAST (and DAST where possible) assessments with the major cloud providers - AWS, Azure, GCP. Coverage should be similar to: https://github.com/fortify/CloudDevSecOpsTemplates and include both Fortify on Demand and Software Security Center via ScanCentral. Reference templates should be placed inside a top level 'integrations' or similarly named folder.

dylanbthomas commented 1 year ago

Gitlab integrations are now located in /devops-integrations. Additional reference implementations templates should follow a similar format.

dylanbthomas commented 1 year ago

FoD sample integrations are added, but we still need samples for ScanCentral SAST and ScanCentral DAST.