09Oct
Implementing Security to your DevOps Pipeline
Hi all, today in this post I'm gonna talk about "Implementing Security to your DevOps Pipeline using VSTS and White Source Bolt (DevSecOps)".
As we all know the trends that we are seeing out in the market, lot of buzz words are being heard and DevOps being 1 of them . People are adopting the process to deliver high value to their customers. As the definition goes "DevOps is the union of People, Process and Products to enable Continuous Delivery of value to our end users". While adopting the DevOps, it's not about going fast but also to look that you don't fall off a cliff. It's great to go fast but also check out for the security even before your code moves to the deployment environments. Implementing security is a big concern and a challenge as well. For example checking the vulnerable open source components, outdated libraries, license compliance issues if any etc.
DevOps + automated security & compliance = Rugged DevOps
With Visual Studio Team Services, we can implement security to our DevOps pipeline using WhiteSource extensions as part of the build process. This ensures that if there are any vulnerabilities with the code, or the libraries that are being used, it detects and gives a catalogue where you can go and have a fix first and then safely push your code to the desired environments making sure that you are secured enough to go and deliver value to your end users without any security complaints.
Stay tuned for more information on setting up the pipeline....!
Related
In this blog we will talk about introduction to Azure DevOps Sever earlier called as Team Foundation...
Read More >
DevOpSmartBoard -The Ultimate End-To-End and One Stop Dashboard solution for all the reporting needs...
Read More >
DevOpSmartBoard -The Ultimate End-To-End and One Stop Dashboard solution for all the reporting needs...
Read More >
DevOpSmartBoard -The Ultimate End-To-End and One Stop Dashboard solution for all the reporting needs...
Read More >
Azure DevOps is very famous devops platform in the current market. Azure DevOps provides end to end ...
Read More >
In this blog we will see the VMSS update by using an image with Rolling upgrade policy.Prerequisites...
Read More >
Scenario – You are trying to assign a work item to your colleague but unable to assign as it shows ...
Read More >
DevOps can be defined as an approach to enable seamless application delivery from inception to produ...
Read More >
The term DevOps is becoming increasingly familiar as more and more companies are interested in imple...
Read More >
In this Blog I am going to explain how we can customize Task in VSTS/TFS to Prevent Users from Movin...
Read More >
Share