MEAPSA

Integrate license and vulnerability scans

This module details continuous security validation and explores OWASP ZAP penetration testing, results, and bugs. Also, it introduces SonarCloud, CodeQL at GitHub, and GitHub Dependabot alerts and security updates.

Administrator

Developer

DevOps Engineer

Security Engineer

Security Operations Analyst

Service Adoption Specialist

Solution Architect

Technology Manager

Azure

GitHub

Artifacts

Boards

Cloud Services

Azure DevOps

Pipelines

Repos

Test Plans

Module Objectives

By the end of this module, you'll be able to:

Implement security validation
Work with SonarCloud
Interpret alerts from scanner tools
Configure GitHub Dependabot alerts and security

Units

Introduction min
Implement continuous security validation min
Explore OWASP ZAP penetration test min
Explore OWASP ZAP results and bugs min
Examine tools for assess package security and license rate min
Explore SonarCloud min
Interpret alerts from scanner tools min
Explore CodeQL in GitHub min
Implement GitHub Dependabot alerts and security updates min
Knowledge check min
Summary min

Prerequisites

None