In this lab you will learn how to accelerate innovation and reduce security risks with IBM Cloud Continuous Delivery to create an open toolchain that includes Git Repos and Issue Tracking, a Tekton-based delivery pipeline, and Code Risk Analyzer to discover vulnerabilities in your code and infrastructure-as-code (Terraform templates). This end-to-end process will help you achieve security and compliance with prescriptive controls for target example workloads.
🎓 What you will learn:
A brief overview of Code Risk Analyzer in IBM Cloud Continuous Delivery.
How to set up a code repository for automatic security vulnerability scanning.
How to scan your code and terraform files and remediate vulnerabilities.
👩💻 Meetup agenda:
Overview of Code Risk Analyzer
Guided Lab walkthrough
If you don’t already have one, sign up for IBM Cloud account: https://ibm.biz/BdfS9T
Install the Continuous Delivery Service from the IBM Cloud Catalog: https://cloud.ibm.com/catalog/services/continuous-delivery
Access the Lab Guide: http://ibm.biz/CodeRiskAnalyzerLab
👋🏻 Who should attend?
Developers and those interested in DevSecOps, application and infrastructure security, and application deployment.
Product Manager, IBM Cloud Developer Tools
Architect, DevOps Analytics, IBM Cloud
STSM, DevSecOps, Hybrid Cloud Research IBM