DevSecOps Guidelines Refinement - Sudharshan#94
Merged
Ali-Yazdani merged 28 commits intoOWASP:masterfrom Feb 18, 2025
Merged
Conversation
…eck.md Spellcheck
Rename 2-3-4-Miss-Configuration-Check.md to 2-3-4-Misconfiguration-Ch…
…Security-Testing.md
Collaborator
|
It looks like the current structure will change. Can you explain this more? Why do we need this change? |
Contributor
Author
|
DevSecOps should address and cover the security aspects around the entire
SDLC process. The current structure lacks coverage of certain areas like
build, release and deploy. These areas are essentials to ensure supply
chain security and securing the deployment CD pipeline. It adds more
context to DevSecOps process. Thanks!
…On Tue, 18 Feb 2025 at 5:10 AM, Ali Yazdani ***@***.***> wrote:
It looks like the current structure will change. Can you explain this
more? Why do we need this change?
—
Reply to this email directly, view it on GitHub
<#94 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AVKVNX4XLVTPMMS4ZMQWXL32QKB6RAVCNFSM6AAAAABXG4ZMDOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDMNRUGMZTCNRRGM>
.
You are receiving this because you authored the thread.Message ID:
***@***.***>
[image: Ali-Yazdani]*Ali-Yazdani* left a comment
(OWASP/DevSecOpsGuideline#94)
<#94 (comment)>
It looks like the current structure will change. Can you explain this
more? Why do we need this change?
—
Reply to this email directly, view it on GitHub
<#94 (comment)>,
or unsubscribe
<https://github.com/notifications/unsubscribe-auth/AVKVNX4XLVTPMMS4ZMQWXL32QKB6RAVCNFSM6AAAAABXG4ZMDOVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDMNRUGMZTCNRRGM>
.
You are receiving this because you authored the thread.Message ID:
***@***.***>
|
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Updated the process section with multiple additions and modifications to align with the current industry best practices in the DevSecOps process in correlation with shift-left security approach in SDLC.