devsec-hardening-devsecops-pipelines
OfficialSecure your CI/CD pipelines
Authorwizeline
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill helps integrate security tooling and controls directly into your software delivery pipeline, enabling DevSecOps practices and shifting security left without slowing down development teams.
Core Features & Use Cases
- CI/CD Security Integration: Provides guidance on securing pipelines across various platforms (GitHub Actions, GitLab CI, Jenkins, etc.).
- Automated Scanning: Recommends and helps implement SAST, DAST, SCA, secret scanning, container scanning, and IaC scanning.
- Use Case: A team wants to ensure their GitHub Actions pipeline automatically scans for vulnerabilities in their dependencies and code before deploying to staging. This Skill provides the necessary steps and configurations.
Quick Start
Use the devsec-hardening-devsecops-pipelines skill to set up SAST scanning in your GitHub Actions pipeline.
Dependency Matrix
Required Modules
None requiredComponents
references
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: devsec-hardening-devsecops-pipelines Download link: https://github.com/wizeline/sdlc-agents/archive/main.zip#devsec-hardening-devsecops-pipelines Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 223,000+ vetted skills library on demand.