Watch this live stream replay on how to use Snyk and CircleCI to assess vulnerabilities and scan projects as part of their deployment pipeline.
Subscribe to the HashiCorp Live Twitch channel to watch future live streams!
0:00 — Introductions
05:30 — Visualize Vulnerability Scanning Reports with pie-my-vulns
07:30 — Workflow for Vulnerability Management in Enterprise
12:00 — Assessing & Triaging Vulnerabilities
31:00 — Triaging Vulnerabilities
38:00 — Security Scanning of synk/goof, a vulnerable application
49:00 — Exploiting a vulnerability in the
1:17:30 — Add Vulnerability Scanning to hashicorp-demoapp/frontend
1:26:00 — Import hashicorp-demoapp/frontend to Snyk (for vulnerability scanning on PRs)
1:31:00 — Add stage to CircleCI pipeline to run Synkf for vulnerability scanning
How Remote Work is Driving the Need for Multi-Cloud DevSecOps: How to Build a Pipeline
How Terraform and Behavior-Driven Development Help Shift Security Left
Simple Deployment Pipelines with HashiCorp Waypoint
Orchestration to Delivery: Integrating GitLab with HashiCorp Terraform, Packer, Vault, Consul, and Waypoint