Video description
Get started with security vulnerability scanning and integrating that with Github, Github Actions and automated security checks in pull requests.
Learn how to scan reported vulnerabilities in projects and Docker containers, so that you can publish images to Docker hub or merge pull requests while knowing that changes in dependencies are secure.
Topics include:
* Install and run locally a security vulnerability scanner
* Catalog a project with an SBOM (Software Bill Of Materials) so that the scanner can do vulnerability matching.
* Setup a Github Action to automatically scan vulnerabilities in a project and optionally fail a build to prevent a merge.
* Scan a Docker container image that is built locally against the latest vulnerabilities, based on any CVE reported publicly
Table of contents
Product information
- Title: Secure Projects with vulnerability scanning in Github
- Author(s):
- Release date: February 2021
- Publisher(s): Pragmatic AI Solutions
- ISBN: 50107VIDEOPAIML
You might also like
video
Continuous Security on AWS (The DevSecOps on AWS Series)
Almost 4 Hours of Video Instruction Create a continuous security posture by defining all your AWS …
video
Secure Operations and Protections
3+ Hours of Video Instruction 3+ hours of introductory training on understanding secure operations and protections …
video
Deploying containerized and serverless apps with Terraform
Christie Koehler (HashiCorp) takes you through the fundamentals of Terraform as she uses it to deploy …
video
Continuous Compliance, Encryption, and Security on AWS (The DevSecOps Series on AWS)
Overview is a series of video courses that will help you use AWS services to define …