Episode 836

Randy Pagels on GitHub Advanced Security

Xebia Architect and Trainer Randy Pagels talks about how GitHub Advanced Security can assist developer in writing more secure code. He covers the three capabilities of GHAS: Dependency Scanning, Secret Scanning, and Code Scanning with CodeQL.

Links:

GitHub Advanced Security
https://github.com/advanced-security
 
About Dependabot alerts
https://docs.github.com/en/code-security/dependabot/dependabot-alerts/about-dependabot-alerts
 
About secret scanning
https://docs.github.com/en/code-security/secret-scanning/about-secret-scanning
 
About code scanning
https://docs.github.com/en/code-security/code-scanning/introduction-to-code-scanning/about-code-scanning
 
Learning Path - Secure at every step
https://resources.github.com/learn/pathways/security/