This bootcamp is designed to get you familiar with GitHub Advanced Security (GHAS) so that you can better understand how to use it in your own repositories.
To participate in the workshop you need a GitHub account and need to be invited to the workshop organization advanced-security. If your repository hasn't been automatically created in the workshop organization, create a new project and push a copy of the ghas-bootcamp-march-2021
project.
git clone https://github.com/advanced-security/ghas-bootcamp-march-2021.git
cd ghas-bootcamp-march-2021
git remote set-url origin https://github.com/advanced-security/ghas-bootcamp-march-2021.git
- About code scanning
- About dependency scanning
- About secret scanning
- Action events that trigger workflows
- Configuring builds for compiled languages
- Configuring code scanning
- Configuring notifications for dependabot alerts
- Customizing dependency updates
- Dependency update configuration options
- Filter pattern cheat sheet
- Running additional queries
- Troubleshooting code scanning workflow
- Code scanning API
- Secret scanning API
- GraphQL API
- REST API