Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/broadinstitute/dsp-appsec-infrastructure-apps

This repository hosts DSP AppSec internal infrastructure apps deployed in GKE.
https://github.com/broadinstitute/dsp-appsec-infrastructure-apps

application-security appsec appsec-tools appsecurity cis-scanner devsecops secure-development security security-automation security-scan security-scanner security-tools zap-scanner

Last synced: 5 months ago
JSON representation

This repository hosts DSP AppSec internal infrastructure apps deployed in GKE.

Awesome Lists containing this project

README 

        
# DSP AppSec Infrastructure Apps



[![Quality Gate Status](https://sonarcloud.io/api/project_badges/measure?project=broadinstitute_dsp-appsec-infrastructure-apps&metric=alert_status)](https://sonarcloud.io/summary/new_code?id=broadinstitute_dsp-appsec-infrastructure-apps)



This repository hosts DSP AppSec internal infrastructure deployed in GCP Kubernetes.

Check the documentation in this [link](https://broadinstitute.github.io/dsp-appsec-infrastructure-apps/). 



### Apps



- [SDARQ](sdarq) - `SDARQ` is a coordination platform to guide both developers and appsec professionals through an SDLC and provide interfaces into various tools and bind them.  Learn more in this [link](https://broadinstitute.github.io/dsp-appsec-infrastructure-apps/docs/sdarq).




Tools integrated with SDARQ:

- [CIS Scanner](cis) - Security scanner that assess security posture of GCP projects. 

- [Automated ZAP Scanner](zap) - Scripts running in GKE as Cronjobs to scan a specific list of endpoints.

- [DefectDojo](defectdojo)

- [CodeDx](codedx)



### Questions

`[email protected]`