Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Blue Team Tips for Using Scorecard in Security Automation

OpenSSF via YouTube

Start learning Write review
Boot.dev Ad

Learn Backend Development Part-Time, Online

Learn More → Noble Desktop Ad

NY State-Licensed Certificates in Design, Coding & AI — Online

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Learn how to leverage OpenSSF Scorecard and Allstar tools for automated security scanning of source code repositories in this technical talk from Google's Raghav Kaul. Explore practical implementations for blue teams to secure first-party repositories through infrastructure and policy approaches. Discover methods for integrating Scorecard into development processes to prevent security issues rather than just detecting them. Master the use of probes for creating granular policies, setting up data pipelines for probe results, and implementing pre-commit GitHub Actions to shift Scorecard scans left in the development cycle. Gain hands-on knowledge about detecting and remediating security misconfigurations in GitHub and GitLab projects by analyzing source code, CI workflows, and repository settings.

Syllabus

Is This Thing on? Blue Team Tips for Scorecard - Raghav Kaul, Google

Taught by

OpenSSF

Reviews

Start your review of Blue Team Tips for Using Scorecard in Security Automation

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.