Tag: DevSecOps

DevSecOps with Amazon CodeGuru Reviewer CLI and Bitbucket Pipelines

April 28, 2023 By Mark Otto Off

DevSecOps refers to a set of best practices that integrate security controls into the continuous integration and delivery (CI/CD) workflow. One of the first controls is Static Application Security Testing (SAST). SAST tools run on every code change and search for potential security vulnerabilities before…

Enabling DevSecOps with Amazon CodeCatalyst

March 29, 2023 By Mark Otto Off

DevSecOps is the practice of integrating security testing at every stage of the software development process. Amazon CodeCatalyst includes tools that encourage collaboration between developers, security specialists, and operations teams to build software that is both efficient and secure. DevSecOps brings cultural transformation that makes…

Integrating with GitHub Actions – Amazon CodeGuru in your DevSecOps Pipeline

March 22, 2023 By Mark Otto Off

Many organizations have adopted DevOps practices to streamline and automate software delivery and IT operations. A DevOps model can be adopted without sacrificing security by using automated compliance policies, fine-grained controls, and configuration management techniques. However, one of the key challenges customers face is analyzing…