This talk will focus on 5 critical security controls integrated as part of the CI/CD pipeline with excellent OSS tools, including: static application security (SAST), hard-code secret detection, dependency checks (SCA), infrastructure as code and API/dynamic application security (DAST). These controls will provide a foundational framework for securing applications from the first line of code.


RSAC 2023 brought together thousands of cybersecurity professionals for four incredible days of expert perspectives, groundbreaking innovation, and best practices. 

5 Open Source Security Tools All Developers Should Know About

Conference: RSA Conference 2023

Authors: David Melamed, Luke O'Malley

Abstract