- Course
- Core Tech
Enhance Software Supply Chain Security with Dependency Review
Secure your software supply chain with GitHub's dependency review and Dependabot. Learn to detect, manage, and automatically fix vulnerable dependencies in your codebase.
What you'll learn
Modern applications rely heavily on third-party dependencies, creating significant security risks. In this course, Enhance Software Supply Chain Security with Dependency Review, you'll master GitHub's tools for managing dependency vulnerabilities. First, you'll explore supply chain security risks and understand how attackers exploit vulnerable dependencies. Next, you'll enable dependency review to catch vulnerabilities before they're merged. Then, you'll configure Dependabot alerts and automated security updates to stay ahead of threats. Finally, you'll implement organization-wide policies and best practices for secure dependency management. By the end of this course, you'll have a comprehensive strategy to protect your software supply chain from emerging threats.
Table of contents
About the author
Tim Warner is a Microsoft Most Valuable Professional (MVP) and Microsoft Certified Trainer (since 1997) with nearly three decades of experience as an IT professional and technical educator.