Skip to content

DEV Community

Rob Bos

Posted on Sep 22, 2022 • Originally published at devopsjournal.io on Sep 21, 2022

Dotnetsheff GitHub Security Features

layout: post title: “Presentation dotnetsheff - Protect your code with GitHub security features” date: 2022-09-21 —

I have the pleasure of virtually speaking at dotnetsheff and these are the slides for it:

Creating modern software has a lot of moving parts. We all build on top of the shoulders of giants by leveraging closed/open source packages or containers that other people have shared. That makes securing our software a lot more complex as well!

In this session you’ll learn what possible attack vectors you need to look for, how to protect yourself against them and how to leverage GitHub’s features to make your life easier!

Topics:

Signed Commits
Dependabot updates
Dependency scanning for known vulnerabilities
Secret scanning (and revoking) out of the box
Using CodeQL

You can download the slides here.

Join us for AWS Security LIVE!

Discover the future of cloud security. Tune in live for trends, tips, and solutions from AWS and AWS Partners.

Top comments (0)

Subscribe

The Next Generation Developer Platform

Coherence is the first Platform-as-a-Service you can control. Unlike "black-box" platforms that are opinionated about the infra you can deploy, Coherence is powered by CNC, the open-source IaC framework, which offers limitless customization.

Read next

Breakthrough AI Model Unifies Visual Tasks: Ask It Anything About Any Image

Mike Young - Mar 6

Swiss Legal Translation Benchmark Tests AI Models Across 4 Languages in Official Documents

Mike Young - Mar 6

AI Language Models Struggle to Read Scrambled Words, Unlike Humans

Mike Young - Mar 6

AI Creates Stunning Videos with Perfect Camera Control Using 3D Consistency Breakthrough

Mike Young - Mar 6