| CPC G06F 21/577 (2013.01) [G06F 2221/034 (2013.01)] | 20 Claims |
|
1. A computer-implemented method for providing a context-aware code security solution within a continuous integration and continuous deployment (CI/CD) pipeline, the method comprising:
receiving a set of security vulnerabilities generated by a set of security tools incorporated with the CI/CD pipeline, wherein the set of security vulnerabilities comprises one or more vulnerabilities indicated by the set of security tools at a respective stage of a plurality of stages of the CI/CD pipeline;
receiving, for the plurality of stages of the CI/CD pipeline, contextual data associated with the set of security vulnerabilities from a set of DevOps tools used by the CI/CD pipeline, wherein the contextual data comprises ownership information identifying an entity responsible for fixing a respective security vulnerability in the set of security vulnerabilities;
augmenting the set of security vulnerabilities with the contextual data; and
prioritizing the augmented security vulnerabilities to identify a subset of high-priority vulnerabilities within the set of security vulnerabilities.
|