Security safeguards in continuous integration

Book This Session

Overview

Learn how to safeguard your software development project by implementing automated security checks in continuous integration pipeline. Learn what is behind acronyms like SAST, SCA, DAST, SBOM and SARIF. Examples are done with .NET, PowerShell and GitHub actions but are applicable to other tech stacks too. Topics: - How the GitHub Actions work - What is a good security test in continuous integration - How to analyse your code against defects - How to analyse your dependencies against known vulnerabilities - How to check your open source licenses - How to scan your code for secret leaks - How to scan your infrastructure as code for misconfigurations - How to generate bill of materials - How to check http security headers status from a website - Implementing branch guards Prerequisites: - Text editor - git - GitHub Account and Public repository Target audience: - Security Engineers - Software Developers - Anyone interested

Speaker

Pasi Huuhka

Pasi Huuhka

DevOps Architect at Zure, DevTech MVP

Pasi Huuhka is a Microsoft Azure MVP with a background spanning DevOps, full stack software development, architecture, and systems administration. Since 2013, he’s worked hands-on with a broad range of Azure’s platform-native, container-based and serverless offerings, helping over 150 customers - from startups to large enterprises - build and operate reliable, cloud-native solutions. Today, his focus is on SRE practices, DevOps, and modern application development on Azure, with a particular interest in AI-powered and agent-based systems. He's passionate about designing cloud architectures that not only work, but scale, self-heal, and evolve over time. He continues to learn by teaching others and actively contributing to the Azure community through Finland Azure User Group.