From the course: Static Application Security Testing
Join today to access over 24,700 courses taught by industry experts.
Demo: Codacy - SonarQube Tutorial
From the course: Static Application Security Testing
Demo: Codacy
- [Instructor] Codacy is a static code analyzer designed to improve your team's code quality in real time. It enables you to automate almost all your manual disconnected static code security analysis test. It also enables you to coordinate your testing and remediation activity with your developers directly, which is a huge benefit. Codacy offers two options for gathering metrics, Codacy Quality and Codacy Pulse. Quality enables you to gather code quality metrics. You authenticate to either GitHub, Bitbucket, or GitLab. You authorize Codacy to analyze your code repositories, and the product generates a report that captures a broad set of metrics. If you choose to fully integrate the product into your CI/CD pipeline, Codacy can even enforce coding standards on each pull request. Pulse enables you to capture engineering team metrics. This tool tracks things like deployment frequency, lead time for changes, time to recover,…
Practice while you learn with exercise files
Download the files the instructor uses to teach the course. Follow along and learn by watching, listening and practicing.
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.
Contents
-
-
-
-
-
Challenges of assessing source code6m 2s
-
(Locked)
OWASP Code Review Guide6m 40s
-
(Locked)
Static code analysis4m 39s
-
(Locked)
Code review models6m 40s
-
(Locked)
Application threat modeling: STRIDE8m 29s
-
(Locked)
Application threat modeling: DREAD5m 12s
-
(Locked)
Code review metrics5m 59s
-
(Locked)
Demo: Codacy7m 53s
-
(Locked)
Demo: SonarQube7m 10s
-
-
-