Automating Security in a Continuous Integration Pipeline

Sohrab Chalishhafshejani, Bao Pham, Martin Jaatun, Martin Jaatun

2022

Abstract

Traditional approaches to software security are based on manual methods, which tend to stall development, leading to inefficiency. To speed up a software development lifecycle, security needs to be integrated and automated into the development process. This paper will identify solutions for automating the security phase into a continuous software delivery process, integrating security tools into a Github repository by using Github Actions to create automated vulnerability scanning workflows for a software project.

Download


Paper Citation


in Harvard Style

Chalishhafshejani S., Pham B. and Jaatun M. (2022). Automating Security in a Continuous Integration Pipeline. In Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS, ISBN 978-989-758-564-7, pages 231-238. DOI: 10.5220/0011083500003194


in Bibtex Style

@conference{iotbds22,
author={Sohrab Chalishhafshejani and Bao Pham and Martin Jaatun},
title={Automating Security in a Continuous Integration Pipeline},
booktitle={Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,},
year={2022},
pages={231-238},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0011083500003194},
isbn={978-989-758-564-7},
}


in EndNote Style

TY - CONF

JO - Proceedings of the 7th International Conference on Internet of Things, Big Data and Security - Volume 1: IoTBDS,
TI - Automating Security in a Continuous Integration Pipeline
SN - 978-989-758-564-7
AU - Chalishhafshejani S.
AU - Pham B.
AU - Jaatun M.
PY - 2022
SP - 231
EP - 238
DO - 10.5220/0011083500003194