Resources to help you get GitHub certified ✨

Prepare for GitHub Certification exams!

Workshop and getting started content for organizations using GitHub

A tool that aims to bulk automates the enablement of GitHub Code Scanning, Secret Scanning and Dependabot across multiple repositories.

Recursos meetup LatinXperts

A demo repository of simple OWASP Top 10 type of vulnerabilities in (mostly) Python. Includes an exploration of GHAS features.

GitHub Advance Security Compliance Action

Sample GitHub App which monitors and enforces rules for code scanning, Dependabot, and secret scanning alerts

A monorepo filtering workaround for GitHub Advanced Security Code Scanning using renaming of the scanning tool in an Actions workflow

GH CLI CodeQL Scan Extension

Manage a uniform team of security managers for every organization in your enterprise

this is a sample security scanning repo

A script which will return the total number of unique de-deuped active committers across multiple GHES instances

A secret scanner wrapper to aggregate results across multiple secret scanning tools

Optimize the utilization of GHAS licenses in an enterprise (or organization)

Securing your Code with GitHub workshop

Secure-Code-AI-Dev is a project focused on leveraging AI to help developers write secure code. It provides tools, examples, and best practices to identify vulnerabilities and improve code quality. The goal is to make security an integral part of the development process for individuals and teams.

GHAS Scan Result Exporter: Simplifies GHAS scan data retrieval into Excel sheets ('Code QL', 'Dependency Scanning', 'Secret Scanning'). With ExcelJS & Nodemailer, enhance security workflow and team collaboration.

Managing GitHub Advanced Security (GHAS) Controls at Scale

A GitHub Action that maps GHAS alerts states between two repos. Useful when migrating repositories.