Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Week 6: Scientific Paper Proposal #2547

Merged
merged 19 commits into from
Sep 29, 2024
Merged

Week 6: Scientific Paper Proposal #2547

merged 19 commits into from
Sep 29, 2024

Conversation

dvavd
Copy link
Contributor

@dvavd dvavd commented Sep 25, 2024

Assignment Proposal

Title

Implementing and Automating Security Scanning to
a DevSecOps CI/CD Pipeline

Names and KTH ID

Deadline

  • Week 6

Category

  • Scientific paper

Description

The paper explores the automation of security scanning focusing on containerised applications. We'll explain how integration SAST and DAST tools improves the security of containerized applications by finding vulnerabilities soon and automating their removal from the CI/CD process, the effectiveness of deploying and automating security scanning in DevSecOps pipeline with Snyk and StackHawk tools and methodologies used for detecting vulnerabilities. We conclude the presentation with future scope. The paper can be found here: https://ieeexplore.ieee.org/abstract/document/10235015

Relevance

In this paper, a DevSecOps CI/CD pipeline integrated dynamic security testing strategy to address the special requirements of securing containerised applications. The model features early vulnerability detection and push left practices with automated remediation using tools such as Snyk for Static Application Security Testing (SAST) and StackHawk for Dynamic Application Security Testing (DAST), all during the software development lifecycle (SDLC).

@dvavd dvavd changed the title Scientific Paper Proposal Week 6: Scientific Paper Proposal Sep 25, 2024
@algomaster99 algomaster99 self-assigned this Sep 29, 2024
algomaster99
algomaster99 requested changes Sep 29, 2024
View reviewed changes
Copy link
Collaborator

@algomaster99 algomaster99 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi! Good proposal. Could you also include a bit of background about SAST and DAST? Once you will do the changes, I will merge.

contributions/scientific-paper/week6/streuli-prerna/README.md Outdated Show resolved Hide resolved
@dvavd
Copy link
Contributor Author

dvavd commented Sep 29, 2024

@algomaster99 it's updated

@algomaster99
Copy link
Collaborator

Failed for similar reason :(
#2519, @Deee92

@javierron
Copy link
Collaborator

@algomaster99 @Deee92 CI is fixed

@algomaster99
Copy link
Collaborator

@javierron what was the reason?

@algomaster99 algomaster99 merged commit 0e42884 into KTH:2024 Sep 29, 2024
1 check passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@algomaster99 algomaster99 algomaster99 requested changes

Assignees

@algomaster99 algomaster99

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@dvavd @algomaster99 @javierron @DavidCWQ