LinuxFoundationX: GitHub Supply Chain Security Using GitGat
GitHub is one of the most popular SCM (source control management) systems in the world and is used by millions of open source developers. Take the first steps in securing your GitHub repositories with GitGat
About this course
Source code management systems are where code, ci-scripts, and Infrastructure as Code (IaC) scripts are stored and managed. That means that properly protecting the SCM is an important step towards securing the software supply chain, and specifically – securing your code. In this course, you will gain an understanding of these categories, why they are important, and how to implement the security controls in GitHub. We’ll use the open source GitGat security report as a guide to the needed security steps. We’ll then see how to use GitGat to set a continuous security audit that takes the current state into account. Finally, we’ll peek under the hood to understand OPA (Open Policy Agent), Gitgat’s underlying technology.
The course is for anyone who has a GitHub account, manages repositories on GitHub, or is responsible for securing such repositories or accounts. The course could fit both hobbyists and professionals who manage GitHub organizations. In addition, the “under the hood” sections could be of interest to developers who are interested in OPA-based projects.
At a Glance:
Institution: LinuxFoundationX
Subject: Computer Science
Level: Introductory
Prerequisites:
Learners should have access to a LinuxMac OSWSL terminal, capable of running Docker and pulling public Docker images.
Familiarity with Linux command line
It is recommended to have git installed as well
Language: English
Video Transcript: English
Associated skills:Infrastructure as Code (IaC), Supply Chain Management, Security Controls, Open Policy Agent, Github, Information Technology Security Auditing, Supply Chain Security, Supply Chain, Version Control, Open Source Technology
There are no reviews yet.