In theory, a shift-left approach to development prevents defects early in the software delivery process. But as new threats emerge and tactics to devops evolve, a shift-left philosophy may not be enough to protect web assets.

In a conversation with Security Weekly's Paul Asadoorian, Rickard Carlsson, co-founder & CEO at Detectify, explained when shift-left testing makes sense, and when it actually disrupts a zero-trust model.