Appsec Village - huskyCI: Finding Security Flaws in CI Before Deploying Them

Cite

DEF CON

Santos, Rafael dos

Formal Metadata

Title

Appsec Village - huskyCI: Finding Security Flaws in CI Before Deploying Them

Title of Series

DEF CON 27

Number of Parts

335

Author

Santos, Rafael dos

License

CC Attribution 3.0 Unported:
You are free to use, adapt and copy, distribute and transmit the work or content in adapted or unchanged form for any legal purpose as long as the work is attributed to the author in the manner specified by the author or licensor.

Identifiers

10.5446/48488 (DOI)

Publisher

DEF CON

Release Date

2019

Language

English

Content Metadata

Subject Area

Computer Science

Genre

Conference/Talk

Abstract

Unfortunately, in large organizations, it becomes very challenging for the security team to review and track all the commits and deploys that occur in all the company's products. To circumvent this problem, I developed a tool in Go to automate security testing within the Continuous Integration pipelines called huskyCI.