Rapid7 is excited to announce the release of a new integration to incorporate InsightAppSec, Rapid7’s web application security testing solution, within Jenkins to improve release cycles and reduce the number of vulnerabilities that go into production.
Developers receive thousands of vulnerabilities every week, but have little time to fix them, especially if they’re already in production. However, addressing vulnerabilities in production isn’t easy and often costs more, both in terms of time and resources.
Because of this, more and more organizations are “shifting left,” or moving security to earlier on in the software development lifecycle (SDLC), where bugs and vulnerabilities can be caught before anything is pushed to production. Here, these issues are much faster and easier to fix, and importantly, they never reach your end users.
[embedded content]
[Whitepaper] A Step-by-Step Guide to Shifting Left and Embracing a True DevSecOps Mentality
Free Download
This is possible by integrating dynamic application security testing (DAST) earlier in the SDLC through build automation frameworks like Jenkins. Leveraging tools that the DevOps team already uses makes it easier to integrate security into the process, since it’s built into their existing workflow and doesn’t require learning another tool or method.
Our new integration: InsightAppSec and Jenkins
Built to help automate the non-human part of the software development process, Jenkins is a popular solution for DevOps to implement continuous integration/continuous deployment (CI/CD). Our new integration between InsightAppSec and Jenkins allows you to run highly targeted scans such as on a shopping cart or product search ..
Support the originator by clicking the read the rest link below.
