Security
Security integration throughout all stages of the CD Model using open-source tools.
In This Section
| Topic | Description |
|---|---|
| Shift-Left Security | Philosophy, defense in depth, and stage integration matrix |
| SAST | Static Application Security Testing with Trivy |
| DAST | Dynamic Application Security Testing with OWASP ZAP |
| Supply Chain | Dependency scanning, Dependabot, and container security |
| Remediation | Vulnerability workflow, blocking strategy, and best practices |
Tools
| Tool | Purpose | Cost |
|---|---|---|
| Trivy | SAST, dependencies, containers | Free |
| OWASP ZAP | DAST for web applications | Free |
| Dependabot | Automated dependency updates | Free |
Tutorials | How-to Guides | Explanation | Reference
You are here: Explanation — understanding-oriented discussion that clarifies concepts.