File: secure_your_application.md

package info (click to toggle)
gitlab 17.6.5-19
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 629,368 kB
  • sloc: ruby: 1,915,304; javascript: 557,307; sql: 60,639; xml: 6,509; sh: 4,567; makefile: 1,239; python: 406
file content (21 lines) | stat: -rw-r--r-- 3,388 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
 
---
stage: Application Security Testing
group: Static Analysis
description: Container, dependency, and vulnerability scans.
info: To determine the technical writer assigned to the Stage/Group associated with this page, see https://handbook.gitlab.com/handbook/product/ux/technical-writing/#assignments
---

# Secure your application

GitLab can check your applications for security vulnerabilities.

| | | |
|--|--|--|
| [**Getting started**](get-started-security.md)<br>Overview of how features fit together. | [**Application security**](index.md)<br>Scanning, vulnerabilities, compliance, customization, reporting. | [**Security configuration**](configuration/index.md)<br>Configuration, testing, compliance, scanning, enablement. |
| [**Container Scanning**](container_scanning/index.md)<br>Image vulnerability scanning, configuration, customization, reporting. | [**Dependency Scanning**](dependency_scanning/index.md)<br>Vulnerabilities, remediation, configuration, analyzers, reports. | [**Comparison**](comparison_dependency_and_container_scanning.md)<br>Dependency Scanning compared to Container Scanning. |
| [**Dependency List**](dependency_list/index.md)<br>vulnerabilities, licenses, filtering, exporting. | [**Continuous Vulnerability Scanning**](continuous_vulnerability_scanning/index.md)<br>Scanning, dependencies, advisories, background jobs. | [**Static Application Security Testing**](sast/index.md)<br>Scanning, configuration, analyzers, vulnerabilities, reporting, customization, integration. |
| [**Infrastructure as Code (IaC) Scanning**](iac_scanning/index.md)<br>Vulnerability detection, configuration analysis, pipeline integration. | [**Secret detection**](secret_detection/index.md)<br>Detection, prevention, monitoring, storage, revocation, reporting. | [**Dynamic Application Security Testing (DAST)**](dast/index.md)<br>Automated penetration testing, vulnerability detection, web application scanning, security assessment, CI/CD integration. |
| [**API Security**](api_security/index.md)<br>Protection, analysis, testing, scanning, discovery. | [**Web API Fuzz Testing**](api_fuzzing/index.md)<br>Testing, security, vulnerabilities, automation, errors. | [**Coverage-guided fuzz testing**](coverage_fuzzing/index.md)<br>Coverage-guided fuzzing, random inputs, unexpected behavior. |
| [**Security Dashboard**](security_dashboard/index.md)<br>Security dashboards, vulnerability trends, project ratings, metrics. | [**Offline environments**](offline_deployments/index.md)<br>Offline security scanning, resolving vulnerabilities. | [**Vulnerability Report**](vulnerability_report/index.md)<br>Filtering, grouping, exporting, manual addition. |
| [**Vulnerability Page**](vulnerabilities/index.md)<br>Vulnerability details, status, resolution, linking issues. | [**Vulnerability severity levels**](vulnerabilities/severities.md)<br>Classification, impact, prioritization, risk assessment. | [**GitLab Advisory Database**](gitlab_advisory_database/index.md)<br>Security advisories, vulnerabilities, dependencies, database, updates. |
| [**CVE ID requests**](cve_id_request.md)<br>Vulnerability tracking, security disclosure. | [**Policies**](policies/index.md)<br>Security policies, enforcement, compliance, approvals, scans. | [**Security scanner integration**](../../development/integrations/secure.md)<br>Reporting, vulnerabilities, remediations, tracking. |