Take a deep dive into Code Risk Analyzer, a component of IBM Cloud Continuous Delivery, with a newly available IBM Cloud toolchain tutorial.

Developers use Code Risk Analyzer to discover vulnerabilities in their Python, Node.js, and Java applications and in their operating system stacks (base image). Code Risk Analyzer integrates the comprehensive security coverage and rich threat intelligence provided by Snyk and other sources to help developers automatically find, prioritize, and fix vulnerabilities in open-source dependencies and containers, early in their workflow.

Securely develop a Kubernetes app

In the new tutorial, you will learn how to use IBM Cloud Continuous Delivery to create an open toolchain that includes Git Repos and Issue Tracking, a Tekton-based delivery pipeline, and Code Risk Analyzer. You will then build a secure Node.js application and deploy it to your Kubernetes cluster on the IBM Cloud, including scanning your repository for open source vulnerabilities. These are the steps:

  1. Create a new toolchain using a toolchain template that includes a git repository and two delivery pipelines — one to build and deploy the app and another to automatically scan your repository when a new merge request is submitted.
  2. Modify your app and create a merge request. You will see how your Tekton-based delivery pipeline automatically picks up the merge request on commit and uses Code Risk Analyzer to scan the app.
  3. Explore Code Risk Analyzer and see the results of the scan in your merge request.
  4. Merge your request and deploy your app to your Kubernetes cluster.

Watch the tutorial demo video

More resources and getting started

Code Risk Analyzer is included as part of IBM Cloud Continuous Delivery and is available in the IBM Cloud Dallas (US-South) region.

  • Read the IBM Research blog on Code Risk Analyzer.
  • For more information on Code Risk Analyzer, see the documentation
  • If you have any questions, get help directly from the IBM Cloud development teams by joining us on Slack.


More from Cloud

IBM Cloud VMware as a Service introduces multitenant as a new, cost-efficient consumption model

4 min read - Businesses often struggle with ongoing operational needs like monitoring, patching and maintenance of their VMware infrastructure or the added concerns over capacity management. At the same time, cost efficiency and control are very important. Not all workloads have identical needs and different business applications have variable requirements. For example, production applications and regulated workloads may require strong isolation, but development/testing, training environments, disaster recovery sites or other applications may have lower availability requirements or they can be ephemeral in nature,…

IBM accelerates enterprise AI for clients with new capabilities on IBM Z

5 min read - Today, we are excited to unveil a new suite of AI offerings for IBM Z that are designed to help clients improve business outcomes by speeding the implementation of enterprise AI on IBM Z across a wide variety of use cases and industries. We are bringing artificial intelligence (AI) to emerging use cases that our clients (like Swiss insurance provider La Mobilière) have begun exploring, such as enhancing the accuracy of insurance policy recommendations, increasing the accuracy and timeliness of…

IBM NS1 Connect: How IBM is delivering network connectivity with premium DNS offerings

4 min read - For most enterprises, how their users access applications and data is an essential part of doing business, and how they service those application and data responses has a direct correlation to revenue generation.    According to We Are Social’s Digital 2023 Global Overview Report, there are 5.19 billion people around the world using the internet in 2023. There’s an imperative need for businesses to trust their networks to deliver meaningful content to address customer needs.  So how responsive is the…

Kubernetes version 1.28 now available in IBM Cloud Kubernetes Service

2 min read - We are excited to announce the availability of Kubernetes version 1.28 for your clusters that are running in IBM Cloud Kubernetes Service. This is our 23rd release of Kubernetes. With our Kubernetes service, you can easily upgrade your clusters without the need for deep Kubernetes knowledge. When you deploy new clusters, the default Kubernetes version remains 1.27 (soon to be 1.28); you can also choose to immediately deploy version 1.28. Learn more about deploying clusters here. Kubernetes version 1.28 In…