Onboarding #4: StackHawk Application Security Automation in CI/CD

Ryan Severns
Ryan Severns
Share on twitter
Share on facebook
Share on linkedin
Share on reddit
Ryan Severns

Ryan Severns

Share on twitter
Share on facebook
Share on linkedin
Share on reddit

Our onboarding guide walking you through how to get started with application security testing with StackHawk.

Getting Started with StackHawk

To help you get started, we have written this onboarding guide with all the tips and tricks about getting up and running with StackHawk. This post covers how to automate your application security testing in CI/CD.

CI/CD - Automate your AppSec

CI/CD Automation

Security testing is best automated in your pipeline, helping developers fix any new bugs as close to commit as possible.

Whether on every commit or every pull request, kick off a StackHawk scan as part of your CI/CD pipeline. Thankfully, moving from local scans to CI/CD automation is simple.

CI/CD integrations for application security testing with StackHawk

Here are a few CI/CD tips:

  • Scan Microservices for Faster Performance: While our scanner is fast, there is only so much you can do for performance when scanning a monolith or customer facing production application. Whenever possible, we recommend scanning at the microservices layer for faster performance (and typically faster fixes).
  • Triage Findings for Blocking Mode: You can configure your pipeline scans in non-blocking or blocking mode. We recommend doing an initial triage of your findings so that you have no new findings showing in terminal output or our web app before instrumenting in blocking mode, allowing you to break build if there are any newly introduced bugs.

Read our documentation to get started with automation for your CI/CD provider.

Next Up: tips on integrating StackHawk with the rest of your engineering tooling.

As always, we are here to help at support@stackhawk.com.

More StackHawk
Ryan Severns
Zachary Conger
Scott Gerlach

KAAKAWW!!! [ kǝn'grats ]

The Demo Gods Approve!
We’ll reach out to you soon to schedule a 45 minute demo. Please complete this 3 minute survey so we can prepare a demo that is specific to you.

KAAKAWW!!! [ kǝn'grats ]

You're signed up for the newsletter!
We’ll keep you up to date on content and other happenings here at StackHawk.