Skip to main content
At Ekyam, we follow a Secure Software Development Lifecycle (SDLC) to manage the code changes and also deploy the tested and approved modifications.  We ensure that all code and infrastructure changes are tracked in Git and should be submitted via Pull Requests (PRs). and undergo mandatory review. The PRs require mandatory approval from the Team lead or Engineering Manager. Moreover, our CI/CD Pipeline Security is designed to ensure that the code deployment happens securely.   → Automation: The approved code changes are managed by automated pipelines that build, test and deploy the code, thereby minimizing human error.  → Our Software Composition Analysis (SCA) and Integrated Static Application Security Testing (SAST) tools scan for vulnerabilities in third party dependencies.  Gated Deployments: The production deployments are manually initiated yet a fully automated action, which requires a final approval from the DevOps Lead.