all InfoSec news
GLITCH: Automated Polyglot Security Smell Detection in Infrastructure as Code. (arXiv:2205.14371v2 [cs.CR] UPDATED)
Aug. 9, 2022, 1:20 a.m. | Nuno Saavedra, João F. Ferreira
cs.CR updates on arXiv.org arxiv.org
Infrastructure as Code (IaC) is the process of managing IT infrastructure via
programmable configuration files (also called IaC scripts). Like other software
artifacts, IaC scripts may contain security smells, which are coding patterns
that can result in security weaknesses. Automated analysis tools to detect
security smells in IaC scripts exist, but they focus on specific technologies
such as Puppet, Ansible, or Chef. This means that when the detection of a new
smell is implemented in one of the tools, it …
automated code detection glitch infrastructure infrastructure as code polyglot security
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Information Security Engineers
@ D. E. Shaw Research | New York City
Information Security Manager & ISSO
@ Federal Reserve System | Minneapolis, MN
Forensic Lead
@ Arete | Hyderabad
Lead Security Risk Analyst (GRC)
@ Justworks, Inc. | New York City
Consultant Senior en Gestion de Crise Cyber et Continuité d’Activité H/F
@ Hifield | Sèvres, France