St. Louis Hackathon - matthewfincher/blacksky GitHub Wiki
Download the OWASP dependency-check-cli command line tool... dependency-check
brew install dependency-check
dependency-check --project "My App Name" --scan "/java/application/lib"
https://jeremylong.github.io/DependencyCheck/analyzers/python-analyzer.html
Jenkins plugin for SecDevOps tool
-
Check box for each security tool you want to run
-
Configure output & data aggregation: ThreadFix, SonarQube