Filter by tag: devops

How To Automate Security Analysis with the RIPS API

14 min read 23 Aug 2017 by Hendrik Buchwald
In this blog post the architecture of the RIPS API is explained and the advantages of a RESTful API are shown. To demonstrate the simplistic nature of our interface, a small CI integration example is given that will reject code commits with security issues and hence protects the production server from new vulnerabilities.

Security Analysis with SonarQube Plugin

4 min read 4 Aug 2017 by Martin Bednorz
SonarQube is one of the leading products for continuous code quality inspection. But in today’s world the detection of security issues is even more important. RIPS enables to integrate its awarded security analysis solution directly into SonarQube through a plugin that helps to detect security threats and quality issues in a central place.

Continuous Integration - Jenkins at your service

6 min read 18 Dec 2016 by Daniel Peeren
An integral aspect of continuous integration is the automated testing of source code to reduce the likelihood of risks, bugs, and errors. In this post, we introduce our plugin for Jenkins, one of the most popular automation platforms in the world, that can automatically warn you whenever a new security issue is introduced to your code base.

Continuous Integration - Jenkins at your service

6 min read 18 Dec 2016 by Daniel Peeren
An integral aspect of continuous integration is the automated testing of source code to reduce the likelihood of risks, bugs, and errors. In this post, we introduce our plugin for Jenkins, one of the most popular automation platforms in the world, that can automatically warn you whenever a new security issue is introduced to your code base.