The CI/CD process has multiple stages, and so you’ll need many security tools at each stage for continuous monitoring of apps, tracking anomalies, vulnerabilities, etc. For example, a static application security test (SAST) tool is run after a pre-commit check.
In addition, issues arising during incremental SAST testing must be resolved quickly. The challenge is the heterogeneity of these security tools and their integration issues.
Hi! Very nice post. Feel free to look at https://betterscan.io which is a Code and Cloud security scanner that you can install in CI/CD, amongst local and IDE use. Let me know if you will have any questions. Thanks,