Google has released a tool – Google Cloud Security Scanner, to simplify scanning apps for vulnerabilities on its cloud platform. Several security scanners already exist for Web applications but, they’re not always well-suited for Google App Engine developers.
Google aims to provide an easy solution for developers to use, as it can scan for two very common vulnerabilities: cross-site scripting (XSS) and mixed content. It can detect the most common issues App Engine developers face with minimal false positives.
The app is currently in beta form and more features are coming soon. To sign up, click here.