In this lab you will learn how to accelerate innovation and reduce security risks with IBM Cloud Continuous Delivery to create an open toolchain that includes Git Repos and Issue Tracking, a Tekton-based delivery pipeline, and Code Risk Analyzer to discover vulnerabilities in your code and infrastructure-as-code (Terraform templates). This end-to-end process will help you achieve security and compliance with prescriptive controls for target example workloads.

A brief overview of Code Risk Analyzer in IBM Cloud Continuous Delivery.

How to set up a code repository for automatic security vulnerability scanning.

How to scan your code and terraform files and remediate vulnerabilities.

If you don't already have one, sign up for IBM Cloud account: https://ibm.biz/BdfS9T

Install the Continuous Delivery Service from the IBM Cloud Catalog: https://cloud.ibm.com/catalog/services/continuous-delivery

Access the Lab Guide: http://ibm.biz/CodeRiskAnalyzerLab

Developers and those interested in DevSecOps, application and infrastructure security, and application deployment.

"Shift Left" security risk with Code Risk Analyzer on IBM Cloud