Abstract

Security vulnerabilities in software development can lead to severe risks if not addressed promptly. By adopting a shift-left approach and implementing gating mechanisms in Continuous Integration/Continuous Delivery (CI/CD) pipelines, organizations can mitigate the impact of high and critical vulnerabilities early in the Software Development Life Cycle (SDLC). This paper discusses a practical methodology for integrating security gates into the CI/CD pipeline to prevent the release of software with critical security flaws. Keywords —Vulnerability Management, Shift-Left Security, CI/CD Pipeline, High Vulnerabilities, Critical Vulnerabilities, Security Gating, SDLC, GitLab, Automation.

Full Text
Paper version not known

Talk to us

Join us for a 30 min session where you can share your feedback and ask us any queries you have

Schedule a call

Similar Papers

Paper Title
Journal
Date
Author
The ‘phasing-in’ of security governance in the SDLC
Jack Danahy
Network Security | VOL. 2008
Jack DanahyJack Danahy
01 Dec 2008
Security Threat and Vulnerability Assessment and Measurement in Secure Software Development
Mamoona Humayun ... Muhammad Ibrahim Khalil
Computers, Materials & Continua | VOL. 71
Mamoona Humayun, et. al.Mamoona Humayun ... Muhammad Ibrahim Khalil
01 Jan 2021
Mitigating Software Vulnerabilities through Secure Software Development with a Policy-Driven Waterfall Model
Shariq Hussain ... Kashif Sultan
Journal of Engineering | VOL. 2024
Shariq Hussain, et. al.Shariq Hussain ... Kashif Sultan
21 Feb 2024
The practice of secure software development in SDLC: an investigation through existing model and a case study
Nor Shahriza Abdul Karim ... Amjad Rehman
Security and Communication Networks | VOL. 9
Nor Shahriza Abdul Karim, et. al.Nor Shahriza Abdul Karim ... Amjad Rehman
16 Nov 2016
View more papers

More From: INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT

Paper Title
Journal
Date
Author
Asthma Care Chatbot
... Prof Sanjana Satpute
INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT | VOL. 08
, et. al. ... Prof Sanjana Satpute
08 Oct 2024
Integrating the Technology Acceptance Model (TAM) into the Supply Chain of India's Passenger Car Industry: Mitigating Technical Uncertainties
...
INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT | VOL. 08
, et. al. ...
08 Oct 2024
The use of CRISPR-Cas9 technology for targeted gene therapy in Parkinson's disease focusing on LRRK2 and SNCA genes
... Anya Maryala
INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT | VOL. 08
, et. al. ... Anya Maryala
08 Oct 2024
Next-Generation Air Quality Monitoring For “Urban Environments”
Alka Singh ... Dr Subodhini Gupta
INTERANTIONAL JOURNAL OF SCIENTIFIC RESEARCH IN ENGINEERING AND MANAGEMENT | VOL. 08
Alka Singh, et. al.Alka Singh ... Dr Subodhini Gupta
08 Oct 2024
View more papers

Disclaimer: All third-party content on this website/platform is and will remain the property of their respective owners and is provided on "as is" basis without any warranties, express or implied. Use of third-party content does not indicate any affiliation, sponsorship with or endorsement by them. Any references to third-party content is to identify the corresponding services and shall be considered fair use under The CopyrightLaw.