- COURSE
GitHub Advanced Security (GH-500T00)
Price:
Duration:
Certification:
Exam:
Continuing Education Credits:
Learning Credits:
GitHub Advanced Security (GHAS) plays a crucial role in enhancing the security posture of software development projects on GitHub. It provides a comprehensive set of tools and features designed to identify and address security vulnerabilities throughout the development lifecycle. By integrating security directly into the development process with GHAS, your team can build more secure and reliable software. The course will explore how to utilize GHAS to maximize security impact and understand GHAS and its role in the security ecosystem.
Upcoming Class Dates and Times
All Sunset Learning courses are guaranteed to run
Course Outline and Details
Prerequisites
- GitHub Account
- A GitHub Account with an active subscription for GitHub Copilot is required for either your personal GitHub account or a GitHub account managed by an organization or enterprise. For learning purposes, the Copilot Free option with usage limits should be sufficient.
- Basic understanding of GitHub fundamentals
Target Audience
This course in intended for students who want to understand and implement advanced security practices with the help of GitHub Advanced Security (GHAS). They will learn how to significantly enhance software development processes and create a more resilient and secure development ecosystem using developer-first solutions to unlock the ability to keep code, supply chain, and secrets secure before you push to production. They will learn how GHAS gives security teams visibility into the cross-organizational security posture and supply chain and unparalleled access to curated security intelligence from millions of developers and security researchers around the world.
Course Objectives
- Introduction to GitHub Advanced Security
- Configure Dependabot security updates on your GitHub repo
- Configure and use secret scanning in your GitHub repository
- Configure code scanning on GitHub
- Identify security vulnerabilities in your codebase by using CodeQL
- Code scanning with GitHub CodeQL
- GitHub administration for GitHub Advanced Security
- Manage sensitive data and security policies within GitHub
Course Outline
GitHub Advanced Security Part 1 of 2
Introduction to GitHub Advanced Security
- Define GHAS and the importance of its integral features
- How to utilize GHAS to get the most impact
- Understand GHAS and its role in the security ecosystem
Configure Dependabot security updates on your GitHub repo
- Manage your dependencies on GitHub
- Dependabot alerts
- Dependabot security updates
- Manage Dependabot notifications and reports
- Dependency review
- Exercise – Configure Dependabot security updates
Configure and use secret scanning in your GitHub repository
- What is secret scanning?
- Configure secret scanning
- Use secret scanning
- Exercise
Configure code scanning on GitHub
- What is code scanning?
- Enable code scanning with third party tools
- Configure code scanning
- Configure code scanning exercise
GitHub Advanced Security Part 2 of 2
Identify security vulnerabilities in your codebase by using CodeQL
- Prepare a database for CodeQL
- Run CodeQL in a database
- Understand CodeQL results
- Troubleshoot CodeQL results
Code scanning with GitHub CodeQL
- What is CodeQL?
- How does CodeQL analyze code?
- What is QL?
- Code scanning and CodeQL
- Customize your code scanning workflow with CodeQL – Part 1
- Exercise – Reference a CodeQL query
- Customize your code scanning workflow with CodeQL – Part 2
- Use the CodeQL CLI
- Customize languages and builds for code scanning
- Exercise – Configure a CodeQL language matrix
GitHub administration for GitHub Advanced Security
- What is GitHub Advanced Security?
- Enable GitHub Advanced Security
- Manage access to GitHub Advanced Security
- Manage the GitHub Advanced Security features and alerts
Manage sensitive data and security policies within GitHub
- Setting security policies
- Create and manage repository rulesets
- Reporting and logging