Posts about
Integrations
Integrate Whispers secrets detection into CI/CD
What is whispers? Whispers is a static code analysis tool designed for parsing various common data formats in search of hardcoded credentials and...
Integrate OWASP Dependency Track into CI/CD
What is OWASP Dependency Track? Dependency Track is an open-source software composition analysis tool from an OWASP project. It is good for...
Integrate SonarQube Scanner into CI/CD
What is SonarQube Scanner? SonarQube is a very popular static analysis tool that scans code for quality and security issues. SonarQube has...
Integrate NPM Audit into CI/CD
What is NPM Audit? The 'audit' command of the 'npm' tool is a built-in security feature to Node Package Manager. It checks the current version of the...
Integrating NodeJSScan into CI/CD
What is nodejsscan? NodeJsScan is an open source static code scanner used to find security flaws specifically in Node.js applications. It is powered...
Integrating Veracode SAST, DAST, and SCA, into CI/CD
What is Veracode? Veracode is a commercial provider of software security testing tools, based in the cloud, that includes static code analysis,...
Integrate SSLYze into CI/CD
What is SSLYze? SSlyze is a great open source tool for checking a website or servers SSL/TLS certificates. It checks the SSL/TLS configuration of a...