GitHub Advanced Security is a course for developers and security engineers who want to use GitHub’s built-in application security features to find and fix vulnerabilities before they reach production. Students learn to configure and use GitHub Advanced Security features including CodeQL code scanning for vulnerability detection, secret scanning to prevent credential exposure, and Dependabot for dependency vulnerability management.
What You Will Learn
- Enable and configure GitHub Advanced Security features at the repository and organization level
- Set up CodeQL code scanning to detect security vulnerabilities and coding errors automatically
- Use secret scanning to detect and block exposed credentials and API tokens in code and commits
- Configure Dependabot alerts and security updates for vulnerable dependencies
- Interpret and remediate security findings using GitHub’s security overview and alert management
Who Should Attend
Developers, DevSecOps engineers, and security champions who want to embed application security scanning into GitHub workflows and CI/CD pipelines.
Prerequisites
Familiarity with GitHub repositories and basic software development experience. GitHub Actions knowledge is helpful.
