Название: Automated Code Remediation: How to Refactor and Secure the Modern Software Supply Chain Автор: Pat Johnson, Olga Kundzich, Jonathan Schneider Издательство: O’Reilly Media, Inc. Год: 2023-05-19 Язык: английский Формат: pdf, epub (true) Размер: 10.2 MB
The software industrial revolution has arrived. There's an explosion of custom applications today, and we assemble them faster than ever from third-party and open source software. But as applications grow in complexity and vulnerabilities mount, updating software becomes a tedious, intractable part of a developer's job. When you fail to keep up, the software becomes less secure and harder to maintain and eventually stops working.
This report explains how organizations can stay on top of software vulnerabilities and maintenance, freeing developers to focus on creating new solutions.
Code remediation is a standard practice used by development teams to whittle down technical debt, whether it’s addressing security vulnerabilities, migrating frameworks, updating dependencies, or fixing code quality issues. All of these tasks involve manual line-by-line, repository-by-repository code changes that can be tedious and error prone. Because this work takes up a significant portion of a devel- oper’s day-to-day work, it takes away from business value work.
Now, let’s imagine a world where code remediation is automated and the value this could bring to your organization. By automating the tedious, time-consuming work of eliminating technical debt, your teams can address vulnerabilities more quickly and holistically, and developers can be more productive on the work that matters to the business. Let’s find out how you get there from here.
The practice of automated code remediation is a next-generation code search and scanning technology that goes beyond search to fix issues automatically across the enterprise codebase. When you automate code refactoring and remediation, code quality and security improve. Developer experience is also enhanced, accelerating the impact your business can make.
This report will help you:
Understand the complexity of today's modern applications and challenges of the current practices for managing software vulnerabilities and maintenance Learn why automated code remediation is a necessity for modern codebases and get best practices for adoption Explore the characteristics required of the technology driving automated code remediation, including the roles of AI and rules-based code automation Learn from real-world case studies what leads organizations to automate code remediation and its impact on the way they work Apply strategies for communicating about and approaching vulnerability management and framework migrations with automated code remediation
1. The Software Industrial Revolution Has Arrived The Assembled Software Supply Chain How Much Code Are We Really Talking About? Scanning and Search: Visibility Without Action DevSecOps Shifts Security Burden onto Every Developer Migration Engineering Impossibly Manual A View into Third-Party Software Components 2. Automated Code Remediation Journey Why Manual Remediation Is Ripe for Automation The Ability to Auto-Fix Source Code Is Revolutionary New Solutions on the Market That Auto-Fix Source Code Applying Auto-Remediation to Your Workflows Adoption Patterns for Auto-Remediation 3. Technology Behind the Scenes of Auto-Remediation 4. Automated Code Remediation in Action 5. Continuous Auto-Remediation Is the Way Forward
Скачать Automated Code Remediation: How to Refactor and Secure the Modern Software Supply Chain
Внимание
Уважаемый посетитель, Вы зашли на сайт как незарегистрированный пользователь.
Мы рекомендуем Вам зарегистрироваться либо войти на сайт под своим именем.
Информация
Посетители, находящиеся в группе Гости, не могут оставлять комментарии к данной публикации.