From the course: Building Secure Software Supply Chains with Open-Source Tools
Join today to access over 24,900 courses taught by industry experts.
Parallelizing security checks for faster execution
From the course: Building Secure Software Supply Chains with Open-Source Tools
Parallelizing security checks for faster execution
- Security checks are critical in every CI/CD pipeline. But let's be honest, if they take too long, developers are tempted to skip them. That's why in this lesson, we're going to run security checks in parallel. Instead of waiting for one scan to finish before the next begins, we split them into independent jobs, all running at the same time. This gives us fast feedback, so we get the results in a minute, not tens of minutes; broader coverage, so the dependencies, container images, and secrets are checked at the same time; and happier developers, so security does not slow them down. Here is how the workflow is structured. So first, we have the setup where we check out the repository so all jobs use the same code base. Quick note, every job runs on a fresh Ubuntu runner, so tools installed in one job don't carry over. That's why, for example, we reinstall Node.js for the SCA job. Then, we start with SCA. So we do…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
-
-
(Locked)
Importance of securing CI/CD pipelines in supply chain security2m 41s
-
(Locked)
Building a secure pipeline with GitHub Actions2m 31s
-
(Locked)
Parallelizing security checks for faster execution3m 33s
-
(Locked)
Integrating SBOMs, scanning, and secrets detection into pipelines2m 20s
-
(Locked)
Hands-on lab: Build a parallelized secure pipeline1m 24s
-
(Locked)
-