Security strategy essentials

A brand new course on Learning Lab

Join this course

GitHub Learning Lab is an integrated learning experience to help you learn how to use GitHub by using GitHub. Complete courses at your own pace on collaboration, workflow, and more.

This course will show you how to build, host, and maintain a secure repository on GitHub. By following simple security best practices, you can rest easy knowing your project is secure for contributors and contributions today and in the future.

Collaboration is key to building great software. As you welcome more contributions, keeping your project secure becomes more important than ever.

In this course, you’ll learn how to:

  • Enable vulnerable dependency detection for private repositories
  • Detect and fix outdated dependencies with security vulnerabilities
  • Automate the detection of vulnerable dependencies with Dependabot
  • Add a security policy with the a SECURITY.md file
  • Remove a commit exposing sensitive data in a pull request
  • Keep sensitive files out of your repository by leveraging the use of a .gitignore file
  • Remove historical commits exposing sensitive data deep in your repository

This course has a dedicated message board on the GitHub Community Forum. Create a post to start a conversation, discuss this course with GitHub Trainers and participants, or troubleshoot any issues you encounter.

Ready to start learning?