all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Scanning and remediating vulnerabilities with Grype

Add to bookmarks
Aug. 19, 2023, 9:07 a.m. | Donald Sebastian Leung

DEV Community dev.to

Date: 2023-08-19


The source code for this lab exercise is available on GitHub.


Consider our typical DevSecOps CI/CD pipeline that triggers automated unit and integration testing, container image building, vulnerability scanning, image pushing and signing, all the way up to deploying to a properly secured production environment on every developer commit to a Git repository.



We've seen how to construct a complete DevOps CI/CD pipeline with GitHub Actions, how container image signing and verification can be achieved with …

automated cd pipeline code container containers developer devsecops environment exercise git github grype image integration lab microservices pipeline remediating vulnerabilities scanning security signing source code testing vulnerabilities vulnerability vulnerability scanning

Visit resource

More from dev.to / DEV Community

Exploring the Realm of Java Encryption: Types and Techniques 3 hours ago | dev.to
aes aspect confidential data +11
Git commit helper: add emojis to your commits 3 hours ago | dev.to
article beginners cli coder +16
Securing Data with Java Encryption 4 hours ago | dev.to
age architecture cryptography data +15
Encrypting with Block Ciphers: A Guide to AES, CBC, and More 8 hours ago | dev.to
aes block blockcipher blog +18
Is Kotlin actually Good ? + Authentication (Day 3) - Creating a SaaS Startup in … 10 hours ago | dev.to
authentication boot coming enterprise +9
Security news weekly round-up - 3rd May 2024 12 hours ago | dev.to
android applications articles artificial +22
May the Source Be With You, 2024! 16 hours ago | dev.to
balance community hackathon life +10
Unlocking secure software distribution with Minder and GitHub Artifact Attestations 17 hours ago | dev.to
actions artifact beta called +16
AWS IAM — Identity and Access Management 17 hours ago | dev.to
access access management aws ec2 +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Network Security Administrator

@ Peraton | United States
View on infosec-jobs.com

IT Security Engineer 2

@ Oracle | BENGALURU, KARNATAKA, India
View on infosec-jobs.com

Sr Cybersecurity Forensics Specialist

@ Health Care Service Corporation | Chicago (200 E. Randolph Street)
View on infosec-jobs.com

Security Engineer

@ Apple | Hyderabad, Telangana, India
View on infosec-jobs.com

Cyber GRC & Awareness Lead

@ Origin Energy | Adelaide, SA, AU, 5000
View on infosec-jobs.com

Senior Security Analyst

@ Prenuvo | Vancouver, British Columbia, Canada
View on infosec-jobs.com
View more jobs