|
|
|
|
|
|
by twunde
3417 days ago
|
|
|
I think the OP is talking about implementing automated security testing in a CI/CD pattern. Basic versions would be implementing automated scanning using something like skipfish. More advanced would actually be security-specific unit and integration tests. Also included would be security-specific static analyzers etc. The companies that I know of doing this are the big tech companies like Google, Mozilla, Facebook although I'm sure there are plenty more. |
|
|