The trend towards working from home, which will also survive the pandemic, combined with the significantly accelerated migration to the cloud and the need for agile development methods, pose considerable challenges to application security. Applications have to go live as quickly as possible and undergo frequent changes, which is why security in DevOps concepts is often not the top priority. In recent years, however, automated security tests have increasingly been dynamically integrated into the CI / CD process and supplemented by penetration tests to ensure that the new application is not hacked the second it goes live. This so-called "shift left" approach to security has been advocated for almost 10 years. "Shift Left" stands for performing security evaluations as early as possible in ...