DevSecOps
Security measures start in the code. We help with security by leveraging possibilities directly in the CI/CD pipeline and containerizing.
There are several measures to be taken for secure software processes. We can directly integrate several lines of defense while developing software:
- Keeping dependencies up-to-date by directly creating Pull-/Merge-Request should there be a new version available
- Having a SBOM (Software Bill of Materials) to know what dependencies are used where and in which versions and what artefacts are available after building the application
- Scanning of container images for vulnerabilities and keep the base images up-to-date
- Signing of container images and build-artifacts for later verification