Integrate dynamic analysis security penetration test (DAST) in build process
Use a tool like OWASP ZAP (or Veracode or HCL ASoC if you're feeling flush)
- tool should run automatically in QA- and Prod-stage builds.
Operator Inputs
- Shell has listed this as a requirement