Everyone can contribute! Learn DevOps and Cloud Native in our cafe ☕
Technology is moving fast in the DevOps and Cloud Native community.
Join the conversation and add your thoughts, tips, experiences, stories.
"Everyone Can Contribute" is inspired by GitLab's mission.
33. #EveryoneCanContribute cafe: Cloud native security with Snyk
Develop fast. Stay secure. Find and fix known vulnerabilities in your dependencies.
Enjoy the session with Matt Jarvis! 🦊
- Snyk imports the code, runs an initial scan, and then continuously monitors
- Code Static Analysis
- Dockerfile and Kubernetes scans
- Infrastructure as Code scans
- Importance scoring based on CVSS score, is there an exploit available, is there a fix available
- Code suggestions based on OSS project fixes and machine learning
- VS Code extension and CLI
- Scan images directly on Docker Hub
- Snyk Advisor to suggest which package as dependency to use
Written by: Michael Friedrich