AWS DevSecOps Pipeline

This Project was built for training the audience in how to impliment shifting left when incorporating cybersecurity in organizations
Energy Dashboard
View of the Energy Dashboard.

This was build using the sample serverless architecture below:

sample serverless big data workflow
Sample serverless big data workflow.

AWS DevSecOps

1. Getting Started

Setting up the Development Environment

2. Release Automation

3. OWASP Top 10

4. Static Application Security Testing (SAST)

APPENDIX

5. Software Composition Analysis (SCA)

APPENDIX: Exploring the sca_buildspec.yaml

6. License Analysis

APPENDIX: Exploring the license_check_buildspec.yaml

7. [OPTIONAL] Dynamic Application Security Testing (DAST)

APPENDIX: Exploring the dast_buildspec.yaml

8. [OPTIONAL] Secure Code Reviews

9. Clean up