The concept of Infrastructure as code, by using pipelines for continuous integration and delivery, is fundamental for the development of cloud infrastructure. Including code quality and vulnerability scans in the pipeline is essential for its security.
In this session, we will show you how you can integrate security checks in/out-band of the build process, on pull request, integrate with test reports, and use Security Hub for the report. We will provide you pros and cons on every approach and code sample sources.
Solution Architect Delivery Manager
The talk will be delivered in Russian