Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

CI/CD nodejs security hardening #1860

Open
baderdean opened this issue Nov 10, 2024 · 4 comments
Open

CI/CD nodejs security hardening #1860

baderdean opened this issue Nov 10, 2024 · 4 comments
Labels
security

Comments

@baderdean
Copy link
Member

https://cheatsheetseries.owasp.org/cheatsheets/Nodejs_Security_Cheat_Sheet.html
https://github.com/lirantal/awesome-nodejs-security
@baderdean
Copy link
Member Author

Use Static Code Analysis on the base code once, set-up in our IDE as plugin, and in the CI/CD

@baderdean
Copy link
Member Author

Replace npm by npq?
https://github.com/lirantal/npq

@zieddhf
Copy link
Member

zieddhf commented Dec 12, 2024
edited
Loading

SAST tools :
https://owasp.org/www-community/Source_Code_Analysis_Tools

Free SAST CI/CD tools to use based on the OWASP recommendation (Link Above):

@zieddhf
Copy link
Member

zieddhf commented Dec 12, 2024
edited
Loading

Snyk code analysis is enabled in their SaaS platform, no need to implement it via CI/CD.

@zieddhf zieddhf removed their assignment Dec 12, 2024
@baderdean baderdean changed the title OWASP conformity CI/CD security hardening Jan 31, 2025
@baderdean baderdean changed the title CI/CD security hardening CI/CD nodejs security hardening Jan 31, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
security
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@baderdean @zieddhf