Introduction
This module explains Composition Analysis, inspecting and validating code bases for compliance, integration with security tools, and integration with Azure Pipelines.
Learning objectives
After completing this module, students and professionals can:
- Inspect and validate code bases for compliance.
- Integrate security tools like Mend with Azure DevOps.
- Implement pipeline security validation.
- Interpret alerts from scanning tools.
- Configure GitHub Dependabot alerts and security.
Prerequisites
- Understanding of what DevOps is and its concepts.
- Familiarity with version control principles is helpful but isn't necessary.
- Beneficial to have experience in an organization that delivers software.