As you may know, we started a project under the OWASP organization to prepare a guideline for DevSecOps. The project goal is to prepare documentation describing the steps we need to achieve a secure development pipeline and compare tools and solutions we can use to make it happen.


The main part of the project steps explanation and tools comparison. We want to clarify what you need to achieve an accurate DevSecOps pipeline and how you can do it! Since we have many tools for doing this in the plat, we should consider which one is better for us based on our environment, other tools, development stack, and budget.

If you’re interested in this topic and enjoy knowledge sharing, so join us, Your PR is always welcome 😀

In the following, you can find more information about the project:

Thanks in advance