GitLab: DevSecOps: Part 9/12: Overcoming Vulnerability Management Challenges
How to do Vulnerability Management 📝 in GitLab?
Session 9: In this video, Padi and I will show you how to manage and track the vulnerabilities with GitLab Vulnerability Management.
Vulnerability Management is the recurring process of identifying, classifying, prioritizing, mitigating, and remediating vulnerabilities
▬▬▬▬▬▬ T I M E S T A M P S ⏰ ▬▬▬▬▬▬
00:00 Welcome
00:09 Intro
00:14 DevSecOps with GitLab
02:45 What is Vulnerability Management
04:22 Capabilities
06:03 Limitations
09:03 Vulnerability Management in GitLab
09:16 Vulnerability Report
09:59 Filtering
10:42 Details of a finding
11:23 Link to the code
11:41 Security dashboard
12:17 How to manually add vulnerability findings
15:15 Create an issue for a finding
17:02 The status of vulnerability findings
17:37 Confirm vulnerability findings
18:00 Dismiss vulnerability findings
18:39 Fix issues
20:26 Pipeline results
20:53 Vulnerability Report with fixed issues
21:08 No longer detected
22:27 Set status to fixed
24:17 Summary
▬▬▬▬▬▬ L I N K S 🔗▬▬▬▬▬▬
Source Code
https://gitlab.com/romano_roth/gitlabdevsecopspipeline
Blog-Post
https://www.romanoroth.com/post/gitlab-vs-github-devsecops
GitLab
https://about.gitlab.com/
Patrick Steger
https://www.linkedin.com/in/patrick-steger-ch/
Vulnerability Management in GitLab
https://about.gitlab.com/handbook/engineering/security/threat-management/vulnerability-management/
▬▬▬▬▬▬ Want to learn more? 🚀 ▬▬▬▬▬▬
Session 1: What is GitLab 🦊? | The fundamental concepts
https://youtu.be/sHK8uN5fBhs
Session 2: Introduction to GitLab 🦊 | Creating a simple project
https://youtu.be/GQ3x9bkCK90
Session 3: What is Software Composition Analysis (SCA) 🧩 in GitLab?
https://youtu.be/l69W5Ym_M5o
Session 4: How to ensure License Compliance 📜 in GitLab?
https://youtu.be/Kmbj_PCiHyk
Session 5: How to do Static Application Security Testing (SAST) 🛡️ in GitLab?
https://youtu.be/owwIMUamdDc
Session 6: How to do Container Scanning 📦 in GitLab?
https://youtu.be/1AUKQ32K6D4
Session 7: What is Secret Detection 🤫?
https://youtu.be/Qs28ONnj00s
Session 8: Dynamic Application Security Testing (DAST)
https://youtu.be/Jy1OiuPZrKs
Session 9: What is Vulnerability Management 📝?
https://youtu.be/XSrlVyv0H1c
Session 10: How to do a Merge Request in GitLab
https://youtu.be/h4AN7S2gwug
Session 11: How to do a Schedule Pipeline in GitLab?
https://youtu.be/PqPW3zQeP94
Session 12: Our Recommendations
https://youtu.be/dphgw9xxjuw
▬▬▬▬▬▬ S U B S C R I B E 🔔 ▬▬▬▬▬▬
╔═╦╗╔╦╗╔═╦═╦╦╦╦╗╔═╗
║╚╣║║║╚╣╚╣╔╣╔╣║╚╣═╣
╠╗║╚╝║║╠╗║╚╣║║║║║═╣
╚═╩══╩═╩═╩═╩╝╚╩═╩═╝
https://www.youtube.com/channel/UCXvlc9x4zlv5DEqbby55Ivg?sub_confirmation=1
▬▬▬▬▬▬ Connect with me 👋 ▬▬▬▬▬▬
LINKEDIN ► https://www.linkedin.com/in/romanoroth/
TWITTER ► https://twitter.com/RomanoRoth
INSTAGRAM ► https://www.instagram.com/romanoroth/
FACEBOOK ►https://www.facebook.com/romanoroth/
MEETUP ► https://www.meetup.com/de-DE/DevOps-Meetup-Zurich/
CONFERNCE ►https://www.devopsdays.ch/
HOMEPAGE ► https://www.romanoroth.com/
▬▬▬▬▬▬ P L A Y L I S T S ▶️ ▬▬▬▬▬▬
Software Testing https://youtube.com/playlist?list=PLrsbMazVPK_rwfoyN9CjxWEtNK-jsDNQW
Extreme Programing https://www.youtube.com/playlist?list=PLrsbMazVPK_qyNeGfjb81feRc7jncUMp4
Business Process Management https://www.youtube.com/playlist?list=PLrsbMazVPK_ptz-P_BiGKTGaFg6cpN-l-
#DevSecOps #DevOps #GitLab #RomanoRoth
Видео GitLab: DevSecOps: Part 9/12: Overcoming Vulnerability Management Challenges канала Romano Roth
Session 9: In this video, Padi and I will show you how to manage and track the vulnerabilities with GitLab Vulnerability Management.
Vulnerability Management is the recurring process of identifying, classifying, prioritizing, mitigating, and remediating vulnerabilities
▬▬▬▬▬▬ T I M E S T A M P S ⏰ ▬▬▬▬▬▬
00:00 Welcome
00:09 Intro
00:14 DevSecOps with GitLab
02:45 What is Vulnerability Management
04:22 Capabilities
06:03 Limitations
09:03 Vulnerability Management in GitLab
09:16 Vulnerability Report
09:59 Filtering
10:42 Details of a finding
11:23 Link to the code
11:41 Security dashboard
12:17 How to manually add vulnerability findings
15:15 Create an issue for a finding
17:02 The status of vulnerability findings
17:37 Confirm vulnerability findings
18:00 Dismiss vulnerability findings
18:39 Fix issues
20:26 Pipeline results
20:53 Vulnerability Report with fixed issues
21:08 No longer detected
22:27 Set status to fixed
24:17 Summary
▬▬▬▬▬▬ L I N K S 🔗▬▬▬▬▬▬
Source Code
https://gitlab.com/romano_roth/gitlabdevsecopspipeline
Blog-Post
https://www.romanoroth.com/post/gitlab-vs-github-devsecops
GitLab
https://about.gitlab.com/
Patrick Steger
https://www.linkedin.com/in/patrick-steger-ch/
Vulnerability Management in GitLab
https://about.gitlab.com/handbook/engineering/security/threat-management/vulnerability-management/
▬▬▬▬▬▬ Want to learn more? 🚀 ▬▬▬▬▬▬
Session 1: What is GitLab 🦊? | The fundamental concepts
https://youtu.be/sHK8uN5fBhs
Session 2: Introduction to GitLab 🦊 | Creating a simple project
https://youtu.be/GQ3x9bkCK90
Session 3: What is Software Composition Analysis (SCA) 🧩 in GitLab?
https://youtu.be/l69W5Ym_M5o
Session 4: How to ensure License Compliance 📜 in GitLab?
https://youtu.be/Kmbj_PCiHyk
Session 5: How to do Static Application Security Testing (SAST) 🛡️ in GitLab?
https://youtu.be/owwIMUamdDc
Session 6: How to do Container Scanning 📦 in GitLab?
https://youtu.be/1AUKQ32K6D4
Session 7: What is Secret Detection 🤫?
https://youtu.be/Qs28ONnj00s
Session 8: Dynamic Application Security Testing (DAST)
https://youtu.be/Jy1OiuPZrKs
Session 9: What is Vulnerability Management 📝?
https://youtu.be/XSrlVyv0H1c
Session 10: How to do a Merge Request in GitLab
https://youtu.be/h4AN7S2gwug
Session 11: How to do a Schedule Pipeline in GitLab?
https://youtu.be/PqPW3zQeP94
Session 12: Our Recommendations
https://youtu.be/dphgw9xxjuw
▬▬▬▬▬▬ S U B S C R I B E 🔔 ▬▬▬▬▬▬
╔═╦╗╔╦╗╔═╦═╦╦╦╦╗╔═╗
║╚╣║║║╚╣╚╣╔╣╔╣║╚╣═╣
╠╗║╚╝║║╠╗║╚╣║║║║║═╣
╚═╩══╩═╩═╩═╩╝╚╩═╩═╝
https://www.youtube.com/channel/UCXvlc9x4zlv5DEqbby55Ivg?sub_confirmation=1
▬▬▬▬▬▬ Connect with me 👋 ▬▬▬▬▬▬
LINKEDIN ► https://www.linkedin.com/in/romanoroth/
TWITTER ► https://twitter.com/RomanoRoth
INSTAGRAM ► https://www.instagram.com/romanoroth/
FACEBOOK ►https://www.facebook.com/romanoroth/
MEETUP ► https://www.meetup.com/de-DE/DevOps-Meetup-Zurich/
CONFERNCE ►https://www.devopsdays.ch/
HOMEPAGE ► https://www.romanoroth.com/
▬▬▬▬▬▬ P L A Y L I S T S ▶️ ▬▬▬▬▬▬
Software Testing https://youtube.com/playlist?list=PLrsbMazVPK_rwfoyN9CjxWEtNK-jsDNQW
Extreme Programing https://www.youtube.com/playlist?list=PLrsbMazVPK_qyNeGfjb81feRc7jncUMp4
Business Process Management https://www.youtube.com/playlist?list=PLrsbMazVPK_ptz-P_BiGKTGaFg6cpN-l-
#DevSecOps #DevOps #GitLab #RomanoRoth
Видео GitLab: DevSecOps: Part 9/12: Overcoming Vulnerability Management Challenges канала Romano Roth
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Powering Digital Innovation Platform Team Empowers Product Teams for DevOps Success
From Projects to Epics Shifting Focus from Deliverables to Outcomes
What is a Minimum Viable Product (MVP) 🧩?
Where can we use DevOps 👩💻🧡👷♀️?
What is Monitor📈? | SAFe DevOps Health Radar
Unlocking the Power of Platform Capabilities A Comprehensive Guide
What is the second way to introduce DevOps?
The Ultimate Guide to Test Automation Boost Efficiency
DevOps Institute Podcast: DevOps Is NOT Dead
Your team’s office space. Fully digital in the Metaverse!
The Dynamic Duo Agile and DevOps Unleash Innovation!
Industrializing Software Development: Zühlke's Platform Plane
DevOps mit SAP in der Theory und Praxis
What is the old way and the new way of software development?
The Architecture Behind E Banking A Deeper Look into Business and Technical Systems
Decode Your Docker Image with Red Hat and Analyze Docker Containers
FI Forum: Platform Plane: Hochwertige Software in kurzer Zeit (German)
The Future of DevOps: Top Trends to Watch in 2023
What are the characteristics of a DevOps Environment?
What is DevSecOps?
Unlocking Agile Success Powerful Testing Strategies for Seamless Development