This workshop is designed to get you familiar with GitHub Advanced Security (GHAS) so that you can better understand how to use it in your own repositories. You'll use GitHub Advanced Security features like code scanning and secret scanning to detect vulnerabilities, and see how to use automation to detect these issues before they reach production.
To participate in the workshop you need a GitHub account and need to be invited to the workshop organization githubuniverseworkshops. If your repository hasn't been automatically created in the workshop organization, create a new project and push a copy of the devsecops-automation-with-ghas project.
git clone https://github.com/githubuniverseworkshops/devsecops-automation-with-ghas.git
cd devsecops-automation-with-ghas
git remote set-url origin https://github.com/githubuniverseworkshops/<your project>.git- About code scanning
- About dependency scanning
- About secret scanning
- Action events that trigger workflows
- Configuring builds for compiled languages
- Configuring code scanning
- Configuring notifications for dependabot alerts
- Customizing dependency updates
- Dependency update configuration options
- Filter pattern cheat sheet
- Running additional queries
- Troubleshooting code scanning workflow
- Code scanning API
- GraphQL API
- REST API