Resolve GitHub Secret Scanning alerts using GitHub Copilot Agent

Module
11 Units

Intermediate

Developer

GitHub

Visual Studio Code

This module covers how to identify and remediate GitHub Secret Scanning alerts using GitHub Copilot's Ask and Agent modes. The training focuses on detecting hard-coded secrets in source code and implementing secure configuration patterns to replace them.

Learning objectives

By the end of this module, you're able to:

Identify the tools that GitHub provides for security and code quality.
Explain the security risks of hard-coded secrets in source code.
Configure and use GitHub Secret Scanning and push protection.
Navigate and manage secret scanning alerts in GitHub repositories.
Analyze security alerts using GitHub Copilot's Ask mode.
Remediate hard-coded secrets using GitHub Copilot's Agent mode.

Prerequisites

Experience using Git and GitHub for version control.
Experience using GitHub Copilot in Visual Studio Code.
Experience developing C# applications.

Introduction min
Examine GitHub's security and code quality tools min
Examine code secrets min
Examine GitHub Secret Scanning min
Examine GitHub Push Protection min
Manage GitHub Security Alerts min
Analyze GitHub Security Alerts using GitHub Copilot's Ask mode min
Resolve GitHub Security Alerts using GitHub Copilot's Agent mode min
Exercise - Resolve GitHub Security Alerts min
Module assessment min
Summary min

Start