Post Content
In this episode of the #AzureEssentialsShow, host Aaron Stark dives into the world of #GitHub Advanced Security, exploring how it seamlessly integrates into the development workflow to enhance application security without compromising on productivity. Our guest Patrick Vuong shares info about the power of #DevSecOps, demonstrates AI-powered features, and shares valuable learning resources to empower developers in building safer software more efficiently.
Resources
• MS Learn Collection: GitHub Advanced Security https://learn.microsoft.com/collections/rqymc6yw8q5rey
• LinkedIn Learning: GitHub Advanced Security Cert Prep https://www.linkedin.com/learning/github-advanced-security-cert-prep-by-microsoft-press
• Found means fixed: Secure code more than three times faster with Copilot Autofix – The GitHub Blog https://github.blog/news-insights/product-news/secure-code-more-than-three-times-faster-with-copilot-autofix
• Copilot Autofix for CodeQL code scanning https://docs.github.com/en/code-security/code-scanning/managing-code-scanning-alerts/about-autofix-for-codeql-code-scanning
• Explore more essential resources! https://azure.microsoft.com/solutions/azure-essentials
Related episodes
• Watch more episodes of the Azure Essentials Show https://aka.ms/AzureEssentialsShow
Get Connected
• Aaron Stark https://www.linkedin.com/in/aaron-kiyaani-mcclary-b71009106/
• Patrick Vuong https://www.linkedin.com/in/vuongpatrick/
Chapters
0:00 Introduction
1:08 Number one attack vector
1:41 DevSecOps
2:19 Shift Left
2:55 GitHub Advanced Security
3:47 Two main capabilities
4:10 Secret scanning
4:46 Code scanning
5:14 Remediation
5:23 Found means fixed
6:38 Demo
7:08 What about technical debt
7:45 Dev Resources Read More Microsoft Developer