Securing Your GitHub Project

Focused View

Marcin Hoppe

1:32:42

73 View

1. Course Overview

1. Course Overview.mp4

01:37

2. Safeguarding Access to Your GitHub Repository

1. Version Check.mp4

00:15

2. Open Sourcing a JavaScript Library.mp4

05:37

3. Understanding Open Source Security.mp4

03:17

4. Using SSH Keys.mp4

03:32

5. Protecting User Credentials.mp4

03:33

6. Configuring 2FA.mp4

03:07

7. Configuring Commit Signing Keys.mp4

03:38

8. Summary.mp4

00:49

3. Securing Your Development Workflow

1. Hardening the GitHub Flow.mp4

07:36

2. Preventing Sensitive Data Leaks.mp4

04:32

3. Recovering from Sensitive Data Leak.mp4

04:24

4. Protecting GitHub Actions Secrets.mp4

08:30

5. Summary.mp4

01:00

4. Discovering Vulnerabilities in Dependencies and Code

1. Open Source Dependencies.mp4

05:12

2. Managing Vulnerabilities in Dependencies.mp4

05:53

3. Patching Vulnerable Dependencies.mp4

07:04

4. Discovering Vulnerabilities Using Static Analysis.mp4

08:08

5. Summary.mp4

00:46

5. Publishing Security Fixes

1. Vulnerabilities in Open Source Code.mp4

05:01

2. Fixing the Code.mp4

04:40

3. Publishing the Fix.mp4

03:46

4. Summary.mp4

00:45

Description

GitHub is the most popular platform for open source developers. This course will teach you how to secure access to your GitHub project, protect sensitive data, quickly identify vulnerabilities, and publish security fixes.

What You'll Learn?

Open source is everywhere and its security has a significant impact on the entire software industry. In this course, Securing Your GitHub Project, you’ll learn to improve the security of your open source code hosted on GitHub. First, you’ll explore protecting access to the code and the project itself. Next, you’ll discover how to harden your workflow and prevent sensitive data from leaking. Finally, you’ll learn how to find and fix security vulnerabilities in your code. When you’re finished with this course, you’ll have the skills and knowledge of GitHub needed to create more secure open source projects.

More details

User Reviews

Rating

average 0

Total votes0

Focused display

GitHub

Marcin Hoppe

Instructor's Courses

Marcin Hoppe is a principal engineer on the Auth0 Platform Security team at Okta. He is passionate about building secure applications and promoting security best practices in the software development community. Marcin’s experience covers software engineering and various areas of information security, such as identity and access management, application and cloud infrastructure security, zero-trust architectures, cryptography, and privacy.

Pluralsight

View courses Pluralsight

Pluralsight, LLC is an American privately held online education company that offers a variety of video training courses for software developers, IT administrators, and creative professionals through its website. Founded in 2004 by Aaron Skonnard, Keith Brown, Fritz Onion, and Bill Williams, the company has its headquarters in Farmington, Utah. As of July 2018, it uses more than 1,400 subject-matter experts as authors, and offers more than 7,000 courses in its catalog. Since first moving its courses online in 2007, the company has expanded, developing a full enterprise platform, and adding skills assessment modules.