Yesterday, Google have released a new tool to make scanning for the vulnerabilities on it cloud platform which is named as "Google Cloud Security Scanners". Google says that this application scan for all types of vulnerabilities, which is divided into two, Cross Site Scripting (XSS) and Mixed content.
This Google's new tool is very easy to setup and will be helpful for all developers. In particular, this scan web applications for two very common vulnerabilities: cross-site scripting (XSS) and mixed content.
Cloud Security Scanner addresses the weaknesses of both approaches by using a multi-stage pipeline. First, the scanner makes a high-speed pass, crawling, and parsing the HTML. It then executes a slow and thorough full-page render to find the more complex sections of your site - Google noted.
Initially the security scanner is in beta form, and Google have mentioned that more new and advanced features will be coming in near future. If you like to give a try then you can head over to Google's dedicated page.