From the course: Complete Guide to Open Source Security

Unlock the full course today

Join today to access over 24,800 courses taught by industry experts.

Scanning with an automated SCA tool

Scanning with an automated SCA tool

From the course: Complete Guide to Open Source Security

Start my 1-month free trial Buy for my team

Scanning with an automated SCA tool

- [Instructor] ShiftLeft is one of the leading commercial SCA tool providers, and they offer a demonstration only free tier subscription for individuals. ShiftLeft also provides a number of demonstration applications, which can be run to demonstrate their scanner. I've got the ShiftLeft demonstration Go application linked into my GitHub account, and we can see the source of the application here. I'm in my ShiftLeft account at the main dashboard for the tool. Let's load the Go language demonstration application. We'll select Add from the GitHub repository, and we'll select Go. We've now got the demo app loaded, and it's queued for scanning. And let's see the demo app. We can now see the demo app in our dashboard, and it's queued for scanning. We'll wait until the scan is complete. Okay, it's ready now. Let's check the results by clicking on the application name. The application scan page provides a flow diagram showing the analysis of the Go code and the open source software packages…

Contents