14:00 - 17:15
This fully packed hands-on workshop gives insight into automation capabilities of security scans, which perfectly fit into many build pipelines. Taking into account frontends (Web) as well as backends (APIs), you will learn which steps of a security analysis can be automated – and how. By focussing on open-source solutions, you will get a tool arsenal with different automation options ready to test your application’s security on every build. During this workshop we will enhance a typical Jenkins-based CI/CD pipeline (every attendee will have an individual Jenkins server in the cloud ready to use with multiple levels of tool integrations) step by step into a full-fledged awesome DevSecOps AppSecPipeline!