1 – Introduction to GitHub Advanced Security

• Define GHAS and the importance of its integral features
• How to utilize GHAS to get the most impact
• Understand GHAS and its role in the security ecosystem
• Module assessment

2 – Configure Dependabot security updates on your GitHub repo

• Manage your dependencies on GitHub
• Dependabot alerts
• Dependabot security updates
• Manage Dependabot notifications and reports
• Dependency review
• Module assessment

3 – Configure and use secret scanning in your GitHub repository

• What is secret scanning?
• Configure secret scanning
• Use secret scanning
• Module assessment

4 – Configure code scanning on GitHub

• What is code scanning?
• Enable code scanning with third party tools
• Configure code scanning
• Configure code scanning exercise
• Module assessment

5 – Identify security vulnerabilities in your codebase by using CodeQL

• Prepare a database for CodeQL
• Run CodeQL in a database
• Understand CodeQL results
• Troubleshoot CodeQL results
• Module assessment

6 – Code scanning with GitHub CodeQL

• What is CodeQL?
• How does CodeQL analyze code?
• What is QL?
• Code scanning and CodeQL
• Customize your code scanning workflow with CodeQL – Part 1
• Customize your code scanning workflow with CodeQL – Part 2
• Use the CodeQL CLI
• Customize languages and builds for code scanning
• Module assessment

7 – GitHub administration for GitHub Advanced Security

• What is GitHub Advanced Security?
• Enable GitHub Advanced Security
• Manage access to GitHub Advanced Security
• Manage the GitHub Advanced Security features and alerts
• Module assessment

8 – Manage sensitive data and security policies within GitHub

• Setting security policies
• Create and manage repository rulesets
• Reporting and logging
• Module assessment