The Resource Secure Projects with vulnerability scanning in Github, Deza, Alfredo

Secure Projects with vulnerability scanning in Github, Deza, Alfredo

Label
Secure Projects with vulnerability scanning in Github
Title
Secure Projects with vulnerability scanning in Github
Statement of responsibility
Deza, Alfredo
Creator
Contributor
Author
Subject
Genre
Language
  • eng
  • eng
Summary
Get started with security vulnerability scanning and integrating that with Github, Github Actions and automated security checks in pull requests. Learn how to scan reported vulnerabilities in projects and Docker containers, so that you can publish images to Docker hub or merge pull requests while knowing that changes in dependencies are secure. Topics include: * Install and run locally a security vulnerability scanner * Catalog a project with an SBOM (Software Bill Of Materials) so that the scanner can do vulnerability matching. * Setup a Github Action to automatically scan vulnerabilities in a project and optionally fail a build to prevent a merge. * Scan a Docker container image that is built locally against the latest vulnerabilities, based on any CVE reported publicly
Characteristic
videorecording
http://library.link/vocab/creatorName
Deza, Alfredo
http://library.link/vocab/relatedWorkOrContributorName
  • Gift, Noah
  • O'Reilly Media Company
Label
Secure Projects with vulnerability scanning in Github, Deza, Alfredo
Link
https://databases.mvlc.org/connect/oreilly?ID=50107VIDEOPAIML
Instantiates
Publication
Carrier category
online resource
Carrier category code
  • cr
Carrier MARC source
rdacarrier
Color
multicolored
Content category
two-dimensional moving image
Content type code
  • tdi
Content type MARC source
rdacontent
Dimensions
unknown
Edition
1st edition
Extent
1 online resource (1 video file, approximately 54 min.)
Issuing body
Made available through: O'Reilly Media Company.
Media category
computer
Media MARC source
rdamedia
Media type code
  • c
Reproduction note
Electronic reproduction.
Specific material designation
remote
System control number
(CaSebORM)50107VIDEOPAIML
System details
Mode of access: World Wide Web
Label
Secure Projects with vulnerability scanning in Github, Deza, Alfredo
Link
https://databases.mvlc.org/connect/oreilly?ID=50107VIDEOPAIML
Publication
Carrier category
online resource
Carrier category code
  • cr
Carrier MARC source
rdacarrier
Color
multicolored
Content category
two-dimensional moving image
Content type code
  • tdi
Content type MARC source
rdacontent
Dimensions
unknown
Edition
1st edition
Extent
1 online resource (1 video file, approximately 54 min.)
Issuing body
Made available through: O'Reilly Media Company.
Media category
computer
Media MARC source
rdamedia
Media type code
  • c
Reproduction note
Electronic reproduction.
Specific material designation
remote
System control number
(CaSebORM)50107VIDEOPAIML
System details
Mode of access: World Wide Web

Library Locations

    • Merrimack Valley Library ConsortiumBorrow it
      4 High Street, Suite 175, North Andover, MA, 01845, US
      42.7009413 -71.1255084