GitHub Supply Chain Security Using GitGat (LFD122x) - Linux Foundation - Training

Training & Certification

Training > Cybersecurity > GitHub Supply Chain Security Using GitGat (LFD122x)

Training Course

GitHub is one of the most popular SCM (source control management) systems in the world and is used by millions of open source developers. Take your first steps in learning to secure your GitHub repositories with GitGat.

Course Rating

Who Is It For

The course is for anyone who has a GitHub account, manages repositories on GitHub, or is responsible for securing such repositories or accounts. The course could fit both hobbyists and professionals who manage GitHub organizations. In addition, the “under the hood” sections could interest developers wanting to learn more about Open Policy Agent-based projects.

read less read more

What You’ll Learn

This course starts by providing an understanding of the risks regarding a GitHub account, Github’s account types and their security ramifications, Github’s access controls, Github branch-protection rules, and OPA concepts. This course will equip you with the knowledge to correctly assess your ownyour organization’s GitHub account security posture using the GitGat open-source tool, correctly set up basic GitHub security posture, whether you’re an individual or run a GitHub organization, and set up the state for the GitGat project and know how to set up a continuous security audit of your repositories.

read less read more

What It Prepares You For

This course prepares you to manage your own (or your organization’s) GitHub security posture.

read less read more

Course Outline

Welcome!

Chapter 1. Why Should We Care about GitHub Security Posture

Chapter 2. The GitGat Security Report

Chapter 3. Access Control

Chapter 4. Permissions

Chapter 5. Branch Protections

Chapter 6. File Modification Tracking

Chapter 7. Incorporating State and Continuous Security-Posture Monitoring

Chapter 8. Under the Hood 1: Rego and OPA Basics

Chapter 9. Under the Hood 2: Understanding the Gitgat Project

Final Exam (Verified Certificate track only)

Prerequisites

Before starting this course, you should have an understanding of operating a GitHub account. Anyone with a GitHub account has the skills required.

Learners should have access to a Linux\Mac OS\WSL terminal, capable of running Docker and pulling public Docker images.

Learning Path

Cybersecurity Essentials (LFC108)

Inclusive Speaker Orientation (LFC101)

Inclusive Open Source Community Orientation (LFC102)

Inclusive Strategies for Open Source (LFC103)

Ethics for Open Source Development (LFC104)

Antitrust Laws and Open Source Software Project Management and Participation (LFC105)

Green Software for Practitioners (LFC131)

A Beginner’s Guide to Open Source Software Development (LFD102)

Secure Software Development: Requirements, Design, and Reuse (LFD104x)

Secure Software Development: Implementation (LFD105x)

Secure Software Development: Verification and More Specialized Topics (LFD106x)

セキュアソフトウェア開発 (LFD121-JP)

Developing Secure Software (LFD121)

GitHub Supply Chain Security Using GitGat (LFD122x)

Open Source Licensing Basics for Software Developers (LFC191)

Generating a Software Bill of Materials (LFC192)

Introduction to Open Source License Compliance Management (LFC193)

Implementing Open Source License Compliance Management (LFC194)

Fundamentals of Professional Open Source Management (LFC110)

Open Source Management & Strategy

$0

Course only

Enroll Today

100% Money Back Guarantee

Includes

Online, Self Paced

4-5 Hours of Course Material

Graded Quizzes (for paid certificate only)

Discussion Forums

7 Weeks of Free Access to Online Course (Audit Mode)

Optional Paid Certificate of Completion

Course Rating

Get help to convince your boss.

Experience Level: Beginner

Training more than 10 people?Get a corporate quote.

Stay Up to Date

Get early access to the latest Linux Foundation Training news, tutorials and exclusive offers – available only for monthly newsletter subscribers.

Name*
First Last
Email*
{"image":"/wp-content/themes/lf/images/newsletter.png"}
This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

© 2023 Linux Foundation - Training. The Linux Foundation®. All rights reserved. The Linux Foundation has registered trademarks and uses trademarks. For a list of trademarks of The Linux Foundation, please see our Trademark Usage page. Linux is a registered trademark of Linus Torvalds.
Terms of Use | Privacy Policy | Bylaws | Trademark Usage | Antitrust Policy | Good Standing PolicyAccelerated by