# Secure SDLC (DevSecOps)

DevSecOps encompasses automated security controls integrated within a DevOps pipeline to enhance the security posture of software builds and deployments. In contrast, Secure Software Development Lifecycle (Secure SDLC) is a broader framework that extends beyond DevOps, encompassing practices such as Threat Modeling, Design Review, and security training initiatives.

<img src="https://53914109-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FjAmSnvnfbHl4EDK56iDo%2Fuploads%2Fgit-blob-5ae4587970f084bccec6c733a5bd61ddb628e52e%2Ffile.excalidraw.svg?alt=media" alt="" class="gitbook-drawing">

AquilaX primarily focuses on code scanning practices, positioning itself within the realm of DevSecOps while not exclusively confined to it. Examples of AquilaX usage scenarios include:

1. Pre-release scanning
2. Pre and post-build analysis
3. Periodic security assessments
4. Training support\\

As our capabilities expand daily, it is crucial to emphasize that AquilaX serves primarily as a versatile tool, akin to a multitool or Swiss Army knife, catering to various application security needs.