We use Xygeni to harden our CI/CD pipelines in Azure DevOps. Our software is mainly in Python, but we also use Javascript and Csharp. Xygeni detects issues on our open-source third-party dependencies and shows them in an easy-to-use dashboard. We also use Xygeni to analyze our code repositories. The scanner analyzes the repository configuration and the code within and detects potential security issues. Finally, it is important for us to secure the DevOps configuration and our deployment pipelines in search of potential vulnerabilities.
Application security is a significant challenge for software engineers, as well as for security and DevOps professionals. It comprises the measures taken to improve the security of online services and websites against malicious attacks by finding, repairing, and preventing security weaknesses and vulnerabilities.
We use Xygeni to harden our CI/CD pipelines in Azure DevOps. Our software is mainly in Python, but we also use Javascript and Csharp. Xygeni detects issues on our open-source third-party dependencies and shows them in an easy-to-use dashboard. We also use Xygeni to analyze our code repositories. The scanner analyzes the repository configuration and the code within and detects potential security issues. Finally, it is important for us to secure the DevOps configuration and our deployment pipelines in search of potential vulnerabilities.