shlogg · Early preview
Arun Kumar @arunkumar-devins

DevSecOps | Securing CI/CD, IaC, and cloud | Automating security, enhancing compliance, and building resilient systems

Secure Your Containers With Trivy: A Powerful Vulnerability Scanner

Arun Kumar @arunkumar-devins
View original post

Trivy is an open-source vulnerability scanner that detects vulnerabilities in container images & app dependencies, ensuring compliance with security standards like CIS Benchmarks.

Automate Code Quality With SonarQube & Azure DevOps

Arun Kumar @arunkumar-devins
View original post

Integrate SonarQube with Azure DevOps for automated code quality checks. Set up SonarQube, install extension, configure pipeline & define quality gates to prevent low-quality code in the main branch.