Scan Your Applications In this task, you’ll evaluate an application and review the results. As you’ll recall, applications in IQ server represent your development projects. Complete the exercise below to build the Application Composition Report. Exercise 2 Identify the applications that you want to start scanning for your organization. You’ll use the scan report in Task …
Objectives By the end this lesson, you will be able to: Define DevSecOps, an extension of DevOps, which includes “pushing quality closer to the source” and “shifting security left” in the software development lifecycle (SDLC). Explain one cultural reason why DevSecOps principles may not always be easy to put into practice. List three practices that organizations …
Objectives By the end this lesson, you will be able to: Download the latest version of NXRM. Unpack the archive and start the NXRM. Sign in and complete the setup wizard to update security defaults. Sign out and shut down the repository. Download Repository and Create Installation Directory In order to practice using Nexus Repository Manager …
Installing, Starting, and Shutting Down Nexus Repository Read More »
Objectives By the end this lesson, you will be able to: Describe OSS licenses. List four reasons why you should care about OSS licenses. Define two categories of licenses (permissive and copyleft). Define three risks associated with use of OSS licenses. OSS – What Does That Mean? An OSS License is a license that… Allows the software to …
Lesson 1 Overview By the end this lesson, you will be able to: Objective Statement One Objective Statement Two Objective Statement Three <Heading Title> Content for heading ^^^ <Heading Title> Content for heading ^^^ Add and remove as needed Review this video to …
Lesson 1 Summary Congratulations! You have completed Lesson 1. You are now able to: Articulate the importance of remediation. Identify the difference between Policy and Security violations. Detect when a violation has occurred. Determine the steps to remediate risk.
Objectives By the end this lesson, you will be able to: Define policies in Nexus IQ. Create a policy hierarchy. Articulate how policy inheritance operates in Nexus IQ. All About Policies As discussed in IQ for Developers 100 – Foundations course, a policy in IQ is used to: Serve as a set of security guidelines for open source …
You have completed Lesson 1. You are now able to: Identify the ways in which Nexus IQ enables you to release faster Describe the current problem with the state of the software supply chain Identify ways that using Nexus IQ can strengthen your software supply chain
Let’s talk about the security model itself, it’s important to note that we’re working with a role-based access model, which means there are users, and different automation tools, looking to access your repositories. With this in mind, we’ll need set up roles and those roles, will be assigned privileges. Later we’ll talk about content selectors …
