I-IBM ibhengeze ubukho beKhowudi yokuHlaziya umngcipheko kwinkonzo yakho ye-IBM yokuQhubeka yokuThunyelwa, Umsebenzi we bonelela abaphuhlisi DevSecOps ukhuseleko kunye nohlalutyo lokuthobela.
Ikhowudi yokuhlaziya umngcipheko inokuqwalaselwa ukuba isebenze kuqaliso ukusuka kumbhobho wekhowudi yomphuhlisi kunye novavanyo kunye nokudlula kwindawo yokugcina izinto zeGit ujonge ingxaki yaziwa kuyo nayiphi na ikhowudi yemithombo evulekileyo efuna ukulawulwa.
Unceda ukubonelela ngezixhobo, yenza ngokwakha kunye novavanyo, kwaye ivumela abasebenzisi ukuba balawule umgangatho wesoftware nge-analytics, ngokwenkampani.
Injongo yomhlalutyi wekhowudi kukuvumela amaqela ezicelo Chonga izoyikiso zokhuselo lwe-cyber, ukubeka phambili imiba yezokhuseleko enokuthi ichaphazele usetyenziso, kwaye isombulule imiba yezokhuseleko.
USteven Weaver we-IBM uthe eposini:
“Ukunciphisa umngcipheko wokufaka ubungozi kwikhowudi yakho kubalulekile kuphuhliso olunempumelelo. Njengomthombo ovulekileyo wendalo, isikhongozeli, kunye neetekhnoloji zefu ziqheleke ngakumbi kwaye zibalulekile, ukuhambisa esweni kunye nokuvavanya kwangoko kumjikelo wophuhliso kungonga ixesha kunye nemali.
"Namhlanje, i-IBM iyavuya ukwazisa iKhowudi yokuHlaziya umngcipheko, into entsha ye-IBM yokuQhubeka nokuHanjiswa. Iphuhliswe ngokudibeneyo neeprojekthi zoPhando ze-IBM kunye nengxelo yabathengi, iKhowudi yokuHlaziya umngcipheko yenza ukuba abaphuhlisi abanjengawe bavavanye ngokukhawuleza kwaye balungise nayiphi na ingozi yomthetho kunye nezokhuseleko ezinokuthi zingene kwikhowudi yakho yomthombo kwaye zinike ingxelo ngqo kwikhowudi yakho. Izixhobo ze-Git (umzekelo, tsala / dibanisa izicelo). Ikhowudi yokuhlaziya umngcipheko ibonelelwa njengeseti yemisebenzi yeTekton, enokufakwa ngokulula kumajelo akho okuhambisa. ”
Ikhowudi yokuhlaziya umngcipheko ibonelela ngoku kulandelayo scan imithombo yolwazi esekwe kwi-IBM yokuQhubeka yokuThunyelwa kweLifu kunye neMagazini yokuKhangelwa (GitHub) ekhangela ubungozi.
Ubuchule kubandakanya ukufumanisa ukuba semngciphekweni kwisicelo sakho (iPython, Node.js, Java) kunye nenkqubo yokusebenza (isiseko somfanekiso) esekwe kubukrelekrele besoyikiso obucekeceke bukaSnyk. kwaye icace, kwaye inike iingcebiso ngolungiso.
I-IBM isebenzisane neSnyk ukudibanisa ukugubungela kwayo Isoftware egqibeleleyo yokukunceda ufumane ngokuzenzekelayo, ubeke phambili, kwaye ulungise ukuba semngciphekweni kwizikhongozelo zomthombo ovulekileyo kunye nokuxhomekeka kwangoko ekuhambeni komsebenzi.
Ugcino lwedatha ye-Snyk Intel Vulnerability ihlala igcinwe liqela lophando lokhuselo lamava ukwenza ukuba amaqela asebenze ngokukuko ekuqulathe imiba yokhuseleko oluvulekileyo, ngelixa lijolise kuphuhliso.
I-Clair yiprojekthi yemithombo evulekileyo yohlalutyo lwe-static Ukuba sesichengeni kwizikhongozelo zesicelo. Kuba uskena imifanekiso usebenzisa uhlalutyo olungashukumi, ungahlalutya imifanekiso ngaphandle kokusebenzisa ikhonteyina yakho.
Ikhowudi yokuhlaziya umngcipheko inokufumana iimpazamo zoqwalaselo kwiifayile zakho zokuhambisa zeKubernetes esekwe kwimigangatho yoshishino kunye neendlela ezilungileyo zoluntu.
Ikhowudi yokuhlaziya umngcipheko ivelisa igama lokuchazwa (BoM) Ukumela konke ukuxhomekeka kunye nemithombo yabo yezicelo. Kananjalo umsebenzi we-BoM-Diff ukuvumela ukuba uthelekise umahluko nakuphi na ukuxhomekeka kumasebe esiseko kwikhowudi yemithombo.
Ngelixa izisombululo zangaphambili bezijolise ekusebenzeni ekuqaleni kombhobho wekhowudi yomphuhlisi, zingqinekile ukuba azisebenzi ngenxa yokuba imifanekiso yezikhongozeli incitshisiwe yaya kuthi apho iqulethe khona owona mvuzo mncinci ufunekayo wokuqhuba isicelo kwaye imifanekiso ayinayo imeko yophuhliso lwesicelo .
Kwizinto zakudala zesicelo, iCode Risk Analyzer ijolise ekuboneleleni ngobungozi, ilayisensi, kunye nokutshekishwa kweCIS kulungelelwaniso lokuhanjiswa, ukuvelisa iiBOMs, kunye nokwenza uhlolo lokhuselo.
Iifayile zeTerraform (* .tf) ezisetyenziselwa ukubonelela okanye ukuqwalasela iinkonzo zefu ezinje ngeVenkile yeLifu kunye neLogDNA nayo iyahlalutywa ukuze ichonge iimpazamo zoqwalaselo lokhuseleko.
Umthombo: https://www.ibm.com