From the course: DevSecOps: Building a Secure Continuous Delivery Pipeline
Unlock the full course today
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
Security testing in the build stage
From the course: DevSecOps: Building a Secure Continuous Delivery Pipeline
Security testing in the build stage
- [Man] The build stage is what most developers and operations folks think of when they think of continuous integration. This is where all the previous stages we talked about gets verified. But also additional acceptance testing happens. In this stage, the build is run, tested, and artifacts get prepared for being deployed, which is our next phase. Now, some developers and security engineers may have a different idea of what this stage entails. If you come from a development language where binaries are compiled or built, you may be thinking of compilers, linkers, and the like. But here, build is more than just compiled languages. This stage applies to any software that is getting prepared for the deploy stage. Yes, this includes combined binaries, but also zipped-up artifacts, images, HTML, JavaScript, infrastructure code, and even your cloud config. If you're struggling with this concept, check out the DevOps Foundations: Continuous Integration/Continuous Delivery course here in the…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.