Finding Vulns in Public Github Repositories (the SAST way)

Описание: SAST - static application security testing is a great addition to every security team's SSDL (secure software development lifecycle). See how you can leverage that technique to find vulnerabilities in public Github repositories before they are reaching production code.

##############################

Want free coffee? Enter ShiftLeft's raffle for a free year of coffee! Here's how:

1. Sign up for a ShiftLeft account (using this link: https://bit.ly/2PMVqZW)
2. Scan an application
3. Start a free 15-day Premium ShiftLeft account

Once you've done this, let them know (https://bit.ly/2PMVqZW). Want additional entries into the raffle? Invite your AppSec teammates to give ShiftLeft a try, and they will give you up to three additional entries.

Three people from all entries will be selected. Good luck!

##############################

💡 If you have any questions or want to request a new video about a special topic, feel free to leave me a comment. You can also contact me on all of my social medias below.

💖 I need your help. Subscribe to this channel, link and retweet my videos and share them with your friends. This going to help make this project more sustainable in the long-run.

👕 If you fancy some swag, make sure to check out https://teespring.com/stores/hackspla...

💙 Last but not least: Subscribe to my Twitter channels   / hacksplained   &   / pascalsec  , and support me on Patreon   / hacksplained   or https://www.buymeacoffee.com/hackspla...