Crowdbotics Articles About


What is DevSecOps?

DevSecOps is an approach for automating security and compliance processes as part of the software development process. The DevSecOps concept takes a "Dev" (for developers) or "code-centric" approach to security, meaning that developers are responsible for implementing secure coding practices and ensuring that their code does not contain vulnerabilities. Security automation can be achieved by using static analysis tools like SonarQube and open source continuous integration platforms like Jenkins, which support automated scans of application code with tools like OWASP ZAP.

Additional topics related to DevSecOps include CI/CD automation, continuous integration & delivery (CI/CD), configuration as code (CAC), and cyber security for developers.