Sign in to confirm you’re not a bot
This helps protect our community. Learn more

Rapidly build and deliver secure apps with DevSecOps practices | Azure Friday

Microsoft Azure
341K subscribers
<__slot-el>
<__slot-el>
6.9K views 3 years ago #Azure #Microsoft #AzureFriday
April Edwards joins Scott Hanselman to show how delivering apps in a DevOps world also means shifting security left. To securely deliver our apps, organizations must harden their dev environments, while using tooling to scan and proactively protect their repositories, ensuring continuous delivery is secure. Chapters 00:00 – Introduction 01:14 – GitHub Codespaces 04:17 – GitHub Code Security (Dependabot, CodeQL, and Secret scanning) 05:51 – Environment workflows 06:38 – Microsoft Defender for Cloud 07:47 – Relationship between Dependabot and Microsoft Defender for Cloud 09:01 – Wrap-up Recommended resources 🔗 GitHub Codespaces – https://aka.ms/azfr/709/01 🔗 GitHub Code Security – https://aka.ms/azfr/709/02 🔗 GitHub CodeQL – https://aka.ms/azfr/709/03 🔗 Understand security in the Pipeline – https://aka.ms/azfr/709/04 🔗 Identify vulnerable container images in your CI/CD workflows – https://aka.ms/azfr/709/05 🔗 Azure DevOps blog – https://aka.ms/azfr/709/06 🔗 Create a free account (Azure) – https://aka.ms/azfr/709/free #Microsoft #Azure #AzureFriday ...more
...more
Rapidly build and deliver secure apps with DevSecOps practices | Azure Friday
173Likes
6,986Views
2022Jan 14
April Edwards joins Scott Hanselman to show how delivering apps in a DevOps world also means shifting security left. To securely deliver our apps, organizations must harden their dev environments, while using tooling to scan and proactively protect their repositories, ensuring continuous delivery is secure. Chapters 00:00 – Introduction 01:14 – GitHub Codespaces 04:17 – GitHub Code Security (Dependabot, CodeQL, and Secret scanning) 05:51 – Environment workflows 06:38 – Microsoft Defender for Cloud 07:47 – Relationship between Dependabot and Microsoft Defender for Cloud 09:01 – Wrap-up Recommended resources 🔗 GitHub Codespaces – https://aka.ms/azfr/709/01 🔗 GitHub Code Security – https://aka.ms/azfr/709/02 🔗 GitHub CodeQL – https://aka.ms/azfr/709/03 🔗 Understand security in the Pipeline – https://aka.ms/azfr/709/04 🔗 Identify vulnerable container images in your CI/CD workflows – https://aka.ms/azfr/709/05 🔗 Azure DevOps blog – https://aka.ms/azfr/709/06 🔗 Create a free account (Azure) – https://aka.ms/azfr/709/free #Microsoft #Azure #AzureFriday

Follow along using the transcript.

Microsoft Azure

341K subscribers