Automating Application Security Testing with Github Actions

Presented by

Scott Gerlach (CSO, StackHawk) and Solomon Rubin (Software Engineer, FOSSA)

About this talk

We have all heard the buzz about developer-centric application security. But implementing a modern AppSec program can be challenging. Join Scott Gerlach (CSO, StackHawk) and Solomon Rubin (Software Engineer, FOSSA) as they discuss how you can automate and integrate application security testing in CI/CD with GitHub actions. Together, the two will walk through how you can test for vulnerabilities in all of your applications – including open source, proprietary code, and containers. By the end of the session, you will have the right tools to test for security vulnerabilities on every merge.
Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (60)
Subscribers (6425)
Up to 90% of any piece of software is from open source, creating countless dependencies and areas of risk to manage. FOSSA is the most reliable automated policy engine for vulnerability management, license compliance, and code quality across the open source stack. With FOSSA, engineering, security, and legal teams all get complete and continuous risk mitigation for the entire software supply chain, integrated into each of their existing workflows.