You're reading from Designing and Implementing Microsoft DevOps Solutions AZ-400 Exam Guide Prepare for the certification exam and successfully apply Azure DevOps strategies with practical labs

Product type Paperback

Published in Sep 2022

Publisher Packt

ISBN-13 9781803240664

Length 490 pages

Edition 2nd Edition

Tools

Azure

Concepts

DevOps

Authors (4):

Swapneel Deshpande

Henry Been

Maik van der Gaag

Subhajit Chatterjee

View More author details

Table of Contents (27) Chapters

Preface

1. Part 1 – Digital Transformation through DevOps

2. Chapter 1: Introduction to DevOps FREE CHAPTER

3. Chapter 2: Site Reliability Engineering Fundamentals

4. Chapter 3: Getting the Best Out of DevOps Tools

5. Part 2 – Getting to Continuous Delivery

6. Chapter 4: Everything Starts with Source Control

7. Chapter 5: Moving to Continuous Integration

8. Chapter 6: Implementing Continuous Deployment and Release Management

9. Part 3 – Expanding Your DevOps Pipeline

10. Chapter 7: Dependency Management

11. Chapter 8: Implement Infrastructure and Configuration as Code

12. Chapter 9: Dealing with Databases in DevOps Scenarios

13. Chapter 10: Integrating Continuous Testing

14. Chapter 11: Managing Security and Compliance

15. Part 4 – Closing the Loop

16. Chapter 12: Application Monitoring

17. Chapter 13: Gathering User Feedback

18. Part 5 – Advanced Topics

19. Chapter 14: Adopting the Culture of Continuous Improvement

20. Chapter 15: Accelerate Cloud Adoption through DevOps

21. Chapter 16: Containers

22. Chapter 17: Planning Your Azure DevOps Organization

23. Chapter 18: AZ-400 Mock Exam

24. Assessments

25. Index

Why subscribe?

26. Other Books You May Enjoy

Detecting application code vulnerabilities

The security assessments that were often conducted at regular intervals in the pre-DevOps era cannot be just left out when moving to a DevOps culture. This means that, instead of leaving them out, they must be conducted in some other way. There are two approaches to doing this.

The first approach is to keep doing pen tests, security reviews, and other security inspections at regular intervals just as before. However, instead of waiting for an okay from the tests before moving to production, code is deployed to production separate from the security assessment(s). This implies that there is an accepted risk that there might be vulnerabilities shipped to production that are found only during the next security scan, which will be addressed in the next release. Using this approach, it is possible to achieve speed, but then it also needs to be accepted that some vulnerabilities might exist for a while.

The second approach relies on making...

The rest of the chapter is locked

You're reading from Designing and Implementing Microsoft DevOps Solutions AZ-400 Exam Guide Prepare for the certification exam and successfully apply Azure DevOps strategies with practical labs

Table of Contents (27) Chapters

Detecting application code vulnerabilities

Unlock this book and the full library FREE for 7 days

Authors (4)

Personalised recommendations for you