View all files | ||||
See requirements to see what is needed to run this lab.
This lab will introduce you to GitHub Advanced Security (GHAS) and its features.
This lab will show you how to review and managed the alerts created in Lab 1.
This lab will have you add some bad code, utilize repository rulesets to block the code, and Copilot Autofix to fix the code.
This lab will have you utilize the Dependency Review action to stop a bad vulnerability in a pull request.
This lab will have you utilize Secret Scanning with Push Protection to prevent secrets from entering the codebase.
This lab will teach you how to effectively use the Security Overview to review and alerts and coverage in an organization.
This open-ended extra credit lab will have you switch to the advanced CodeQL setup.
This open-ended extra credit lab will have you create a custom secret scanning pattern.
This project is licensed under the terms of the MIT open source license. Please refer to MIT for the full terms.
This lab uses and includes sample code from the OWASP Juice Shop project. The Juice Shop is Copyright (c) 2014-2024 Bjoern Kimminich & the OWASP Juice Shop contributors. Please refer to the LICENSE for the full terms.