Integrating static analysis tooling (sast) into ci/cd pipelines has honestly never been easier. So let’s set up something really quick using Github Actions and CodeQL. Here we’ve setup a “super secure” application, but before we deploy or check in code, we should probably setup automated sast scanning. Navigating to the security tab, you should be […]