Copyright Amazon.com, Inc. or its affiliates. All Rights Reserved. SPDX-License-Identifier: CC-BY-SA-4.0
In this workshop, you will learn how to leverage AWS development tools and open-source projects to integrate automated security testing into a CI/CD pipeline. You will learn about a variety of patterns for integrating security-centric release control into AWS CodePipeline. Additionally, you will learn how to add feedback loops and fix common security vulnerabilities in your container-based applications.
Level: Advanced
Duration: 2 - 3 hours
AWS Services: Amazon CloudWatch, AWS CodeCommit, AWS CodeBuild, AWS CodePipeline, Amazon ECR, AWS Lambda, Elastic Container Registry (ECR), Elastic Container Service (ECS)
Open Source Projects: Hadolint, Trufflehog