- CheckMates
- :
- Products
- :
- CloudMates Products
- :
- CNAPP
- :
- How to integrate SHIFTLEFT with AWS CodeBuild and ...
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Are you a member of CheckMates?
×- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
How to integrate SHIFTLEFT with AWS CodeBuild and scan Docker images for vulnerabilities
Docker images often contain vulnerabilities that can allow an attacker to leverage when the application is at runtime - in both UAT/Test and production environments. It's crutial for DevOps engineers to ensure that the security is integrated into CICD Pipeline for your cloud native applications. Check Point's CloudGuard SHIFTLEFT is a security tool that can integrate into your CICD pipeline, and scan your containers for vulnerabilities. Shiftleft can also scan source codes and IaC for vulnerabilities and misconfigurations.
In this tutorial, I'll do a step-by-step walk-through of integrating CloudGuard SHIFTLEFT into your CICD Pipeline on AWS. The integration will happen at the build stage, and SHIFTLEFT will scan the container image, and upload the scan result to an S3 bucket.
Check out my original Github tutorial here https://github.com/jaydenaung/CloudGuard-ShiftLeft-CICD-AWS