SAST user looking for python help

I’m a new to checkmarx user that inherited the SAST platform. Seems cool so far, but need some tips on getting up to speed scanning our python git repo.

+1, following for more info

No problem Colin, Checkmarx scans uncompiled source code directly from your repo so it is ez-pz. They have options for triggering scans from a Github Action, Webhooks, Build Pipeline or via the Checkmarx Web Portal. Which method seems to best fit your existing SDLC processes?

1 Like

That’s awesome! Thanks for the heads up.

@Colin which Python version are you currently using? In addition any specific frameworks you are working with? We do have Python high on our list for 2021 so would love to get your feedback on that

2 Likes