Python's Poetry Package Manager and integration with Source Composition Analysis tool - Snyk скачать в хорошем качестве

Python's Poetry Package Manager and integration with Source Composition Analysis tool - Snyk

Poetry is an awesome new package, build and dependency management framework for python. It solves a lot of serious issues that previous Python package managers have not been able to solve. Snyk is a source composition analysis tool that scans libraries and project dependencies across multiple languages and platforms, including Python, Go, NodeJS and others. Snyk recently released features that integrate with the poetry package manager. In this demo, I go over a new project that I setup with Poetry and use's Snyk's features to identify security issues with the project as a Proof-of-Concept Source Composition Analysis is the technique of scanning libraries and dependencies for Security vulnerabilities. Its one of the key components of DevSecOps and is critical to a good and comprehensive Secure SDLC Poetry: https://python-poetry.org/ Snyk integration with Poetry: https://support.snyk.io/hc/en-us/arti...