Advanced Vocabulary #cicd#devops#security#feature-flags

CI/CD Advanced Vocabulary

5 exercises — Master advanced CI/CD English: security scanning (SAST, DAST, SCA), artifact registries, deployment gates, merge queues, trunk-based development, and feature flag hygiene.

Core CI/CD Advanced vocabulary clusters
  • Security scanning: SAST, DAST, SCA, quality gate, deployment gate
  • Artifacts: artifact registry, immutable tag, image digest, SBOM, attestation
  • Deployment: percentage rollout, rollback trigger, kill switch, feature toggle, flag debt
  • Branch strategy: trunk-based development, merge queue, CODEOWNERS, short-lived branch
  • Testing: flaky test, test quarantine, flakiness rate, test sharding
0 / 5 completed
1 / 5
A DevSecOps engineer explains pipeline security stages:
"We run three scanners on every pull request. The first analyses source code without executing it — catching SQL injection patterns, hardcoded secrets, and insecure crypto. The second hits the running app with real HTTP requests to find runtime vulnerabilities. The third checks our package.json against CVE databases for vulnerable dependencies."
Which scanner is described by "analyses source code without executing it"?