Fortify Tips & Information

Tips & Info

Video: Dockerfile Scanning with Fortify SCA

COEST

0 Likes

over 2 years ago

YouTube link: https://www.youtube.com/watch?v=kO7skR5yNKo

Demo of Dockerfile Scanning with Fortify Static Code Analyzer (SCA), new with release 20.2 (Nov 2020).

Scanning of Docker Config files

- Help developers create more secure container images as part of the SDL

- Complements scanning base images for known vulnerabilities

- Supports custom rules for use cases such as verifying use of company approved base images - Dockerfiles in 20.2 (6 vulnerability categories)

- Docker Compose, K8 Helm Charts and Infrastructure as Code in future releases

- Based on CIS Benchmark

Tags:

videos

Fortify Static Code Analyzer (SCA)

Scanning of Docker Config files

Labels:

Videos

Comment List

Recommended

Resources

Support

Documentation

Learning Services

Partner Programs

Privacy

Compliance

Help

Company

Accessibility
Anti-Slavery Statement

Support
Contact Us

Careers
Code of Business Conduct and Ethics

The opinions expressed above are the personal opinions of the authors, not of OpenText. By using this site, you accept the Terms of Use. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.), Hewlett Packard Enterprise Company, or Micro Focus. As of January 31, 2023, the Material is now offered by OpenText, a separately owned and operated company. Any reference to the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks is historical in nature and the HP, Hewlett Packard Enterprise/HPE, and Micro Focus marks are the property of their respective owners.

Menu

Fortify Tips & Information

Video: Dockerfile Scanning with Fortify SCA

Tags:

Labels:

Resources