Training > Cybersecurity > GitHub Supply Chain Security Using GitGat (LFD122x)
Training Course

GitHub Supply Chain Security Using GitGat (LFD122x)

GitHub is one of the most popular SCM (source control management) systems in the world and is used by millions of open source developers. Take your first steps in learning to secure your GitHub repositories with GitGat.

Course Rating
4.5/5 Stars
Who Is It For

The course is for anyone who has a GitHub account, manages repositories on GitHub, or is responsible for securing such repositories or accounts. The course could fit both hobbyists and professionals who manage GitHub organizations. In addition, the “under the hood” sections could interest developers wanting to learn more about Open Policy Agent-based projects.
read less read more
What You’ll Learn

This course starts by providing an understanding of the risks regarding a GitHub account, Github’s account types and their security ramifications, Github’s access controls, Github branch-protection rules, and OPA concepts. This course will equip you with the knowledge to correctly assess your ownyour organization’s GitHub account security posture using the GitGat open-source tool, correctly set up basic GitHub security posture, whether you’re an individual or run a GitHub organization, and set up the state for the GitGat project and know how to set up a continuous security audit of your repositories.
read less read more
What It Prepares You For

This course prepares you to manage your own (or your organization’s) GitHub security posture.
read less read more
Course Outline
Chapter 1. Why Should We Care about GitHub Security Posture
Chapter 2. The GitGat Security Report
Chapter 3. Access Control
Chapter 4. Permissions
Chapter 5. Branch Protections
Chapter 6. File Modification Tracking
Chapter 7. Incorporating State and Continuous Security-Posture Monitoring
Chapter 8. Under the Hood 1: Rego and OPA Basics
Chapter 9. Under the Hood 2: Understanding the Gitgat Project
Final Exam (Verified Certificate track only)

Before starting this course, you should have an understanding of operating a GitHub account. Anyone with a GitHub account has the skills required.

Learners should have access to a Linux\Mac OS\WSL terminal, capable of running Docker and pulling public Docker images.

Apr 2023
I liked that it was simple and short, best for a quick start.