Nobody likes having vulnerabilities in production and potentially being exploited by attackers – but let’s be honest we all have them. Just look at the number of SSL related vulnerabilities announced in the last few months that were in production for years. If we can identify those issues as early as possible and fix them as fast as possible then the window of opportunity for an attacker will be as small as possible. That’s a big win for security! But how do we achieve this without impacting our delivery teams?