You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: _labs/lab1.md
+4-17Lines changed: 4 additions & 17 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -8,27 +8,14 @@ This lab covers parts of the following exam domains:
8
8
- Domain 3: Configure and use dependency management
9
9
- Domain 4: Configure and use code scanning
10
10
11
-
## Exercise 1: Create the repository
12
-
13
-
We need to provision our working copy of the repository in order to begin the labs!
14
-
15
-
1. Navigate to URL: [https://github.com/ghuwsec1953/juice-shop-ghas-workshop](https://github.com/ghuwsec1953/juice-shop-ghas-workshop)
16
-
2. Click on the **Use this template ▾** button and select **Create a new repository**.
17
-
3. Make sure you have the **ghuwsec1953** organization selected as the **Owner**.
18
-
4. Name the repository **YOUR_USERNAME-juice-shop-ghas-workshop**.
19
-
5. Set the repository visibility to **Internal**.
20
-
6. Click the green **Create repository** button to create the repository.
21
-
22
-
Once the repository is created, you will be automatically redirected to it. Continue on to Exercise 2.
23
-
24
11
> [!TIP]
25
12
> We recommend opening up two browser windows, one with the lab and one with the working copy of your repo!
26
13
27
-
## Exercise 2: Enabling the security settings
14
+
## Exercise 1: Enabling the security settings
28
15
29
16
In this exercise, you will be guided through the process of enabling the remaining GHAS features. Then you will be shown how to use the features to secure your code.
30
17
31
-
### Exercise 2.1: Enable Dependabot
18
+
### Exercise 2: Enable Dependabot
32
19
33
20
Although Dependabot isn't part of the GitHub Advanced Security product suite, it is still an important tool to discuss from an overall security posture.
34
21
@@ -44,7 +31,7 @@ Although Dependabot isn't part of the GitHub Advanced Security product suite, it
44
31
<imgsrc="images/lab-1-1-1.png"/>
45
32
</details>
46
33
47
-
### Exercise 2.2: Enable Code Scanning
34
+
### Exercise 3: Enable Code Scanning
48
35
49
36
1. Next, let's enable **Code Scanning with CodeQL**. These settings are also under the **Code security** settings page.
50
37
2. Click the **Enable** button next to GitHub Advanced Security.
@@ -76,7 +63,7 @@ Although Dependabot isn't part of the GitHub Advanced Security product suite, it
76
63
77
64
7. Optionally, configure the **Check runs failure threshold** - by default, a pull request will be blocked if there are any high or higher security alerts.
78
65
79
-
### Exercise 2.3: Enable Secret Scanning
66
+
### Exercise 4: Enable Secret Scanning
80
67
81
68
1. Click on the **Enable** button to enable Secret Scanning.
82
69
2. Check the box to **Scan for generic secrets**. This feature uses AI to find secrets/passwords that may be in your code that don't correspond to a known provider pattern.
0 commit comments