Jit MVS for AppSec Plan
Description
The Jit MVS (minimum viable security) for AppSec Plan leverages several open-source security tools to achieve a baseline security standard for your development environment. The Jit MVS for AppSec Plan enables R&D to own application security from day zero with an automatically and continuously implemented solution that is hassle-free, transparent, and quiet.
Plan Items
These are the items (product security requirements) included in Jit MVS plan:
| Item Name | Layer |
|---|---|
| Scan Code For Vulnerabilities (SAST) | Application Security |
| Scan Code Dependencies For Vulnerabilities (SCA) | Application Security |
| Scan Code For Hard-Coded Secrets | Application Security |
| Scan Dockerfiles | Cloud Security |
| Scan Kubernetes IaC Files | Cloud Security |
| Scan IaC For Static Misconfigurations | Cloud Security |
| Scan for Infrastructure Runtime Misconfigurations | Cloud Security |
| Require MFA For Cloud Providers | Cloud Security |
| Ensure Your API is Secure | Web Application Security |
| Run a Web Application Scanner | Web Application Security |
| Require MFA for SCM | CI/CD Security |
| Require Branch Protection for SCM | CI/CD Security |
Updated 4 months ago