Software Composition Analysis

Advanced
Administrator
Developer
DevOps Engineer
Security Engineer
Security Operations Analyst
Service Adoption Specialist
Solution Architect
Technology Manager
Azure
Azure Artifacts
Azure Boards
Azure Cloud Services
Azure DevOps
Azure Pipelines
Azure Repos
Azure Test Plans
GitHub

This module explains Composition Analysis, how to inspect and validate code bases for compliance, integration with security tools, and integration with Azure Pipelines.

Learning objectives

By the end of this module, you are able to:

  • Inspect and validate code bases for compliance.

  • Integrate security tools like WhiteSource with Azure DevOps.

  • Implement pipeline security validation.

  • Interpret alerts from scanning tools.

  • Configure GitHub Dependabot alerts and security.

Prerequisites

None