Too Long; Didn't Read
Static code analysis is performed as part of the security development lifecycle, where tools are used to find vulnerabilities such as buffer overflow, SQL injection within application code. This article explains how to set up static code analysis for infrastructure as code using Azure DevOps pipelines and Prisma cloud. An example of pipeline execution with Prisma Warning that we have one medium issue. This violation blocks the merge of “faulty code” into our deployment branch. If the job fails, the PR is blocked from being merged unless open issues are resolved.