From cc10df6f2960d7e99bf6a5e72004c74c442cb4dc Mon Sep 17 00:00:00 2001 From: Aaron Stewart Date: Wed, 28 Sep 2022 13:55:06 -0600 Subject: [PATCH 1/3] Update 1-introduction.yml --- github/code-scanning-with-github-codeql/1-introduction.yml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/github/code-scanning-with-github-codeql/1-introduction.yml b/github/code-scanning-with-github-codeql/1-introduction.yml index b7c809cd..e07ae20b 100644 --- a/github/code-scanning-with-github-codeql/1-introduction.yml +++ b/github/code-scanning-with-github-codeql/1-introduction.yml @@ -5,7 +5,7 @@ metadata: unitType: introduction title: "Introduction" # user input: module title for browser tab and search results description: "An introduction to the topics you'll learn about in this module." # user input: a description for site search and SEO - ms.date: 2/15/2022 + ms.date: 09/28/2022 author: hrasheed-msft ms.author: hrasheed ms.topic: interactive-tutorial # do we need ms.topic? From ee2efee2a08667614cceb5f6521facd487d45edd Mon Sep 17 00:00:00 2001 From: Ross Mallory <81823408+rmallorybpc@users.noreply.github.com> Date: Tue, 4 Oct 2022 13:17:05 -0400 Subject: [PATCH 2/3] Update 1-introduction.md Moved the learning objectives and prerequisites to the launch page, and added a transition sentence. --- .../includes/1-introduction.md | 19 +------------------ 1 file changed, 1 insertion(+), 18 deletions(-) diff --git a/github/code-scanning-with-github-codeql/includes/1-introduction.md b/github/code-scanning-with-github-codeql/includes/1-introduction.md index 92f6f4a7..3137fcef 100644 --- a/github/code-scanning-with-github-codeql/includes/1-introduction.md +++ b/github/code-scanning-with-github-codeql/includes/1-introduction.md @@ -4,21 +4,4 @@ Imagine that you are a senior developer at a start-up company specializing in he In this module, you will learn about the CodeQL static analysis tool and how the code scanning feature in GitHub uses it to automate vulnerability scanning. You will also learn how to customize a code scanning workflow that uses CodeQL, how to include additional queries, and how to adapt your workflow to repositories that have multiple languages. -## Learning objectives - -By the end of this module, you will be able to: - -* Understand CodeQL and how it analyzes code -* Understand QL, a unique logic programming language -* Set up CodeQL based code scanning in a GitHub repository -* Reference a custom CodeQL query -* Configure the language matrix in a CodeQL workflow -* Learn how to use the CodeQL CLI to generate code scanning results and upload them to GitHub -* Implement custom build steps - -## Prerequisites - -- A GitHub enterprise account with a GitHub Advanced Security license -- Necessary permissions to administrate your repository -- Knowledge of GitHub Advanced Security's code scanning feature -- Knowledge of GitHub Actions +Next up, you'll learn how CodeQL is used by developers. From 48ae99adf38606aa81d5bb1a364f200aa2a2aaca Mon Sep 17 00:00:00 2001 From: Ross Mallory <81823408+rmallorybpc@users.noreply.github.com> Date: Thu, 13 Oct 2022 11:28:22 -0600 Subject: [PATCH 3/3] Update 1-introduction.md Added the learning objectives and prerequisites back --- .../includes/1-introduction.md | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) diff --git a/github/code-scanning-with-github-codeql/includes/1-introduction.md b/github/code-scanning-with-github-codeql/includes/1-introduction.md index 3137fcef..ef9f2283 100644 --- a/github/code-scanning-with-github-codeql/includes/1-introduction.md +++ b/github/code-scanning-with-github-codeql/includes/1-introduction.md @@ -4,4 +4,23 @@ Imagine that you are a senior developer at a start-up company specializing in he In this module, you will learn about the CodeQL static analysis tool and how the code scanning feature in GitHub uses it to automate vulnerability scanning. You will also learn how to customize a code scanning workflow that uses CodeQL, how to include additional queries, and how to adapt your workflow to repositories that have multiple languages. +## Learning objectives + +By the end of this module, you will be able to: + +- Understand CodeQL and how it analyzes code +- Understand QL, a unique logic programming language +- Set up CodeQL based code scanning in a GitHub repository +- Reference a custom CodeQL query +- Configure the language matrix in a CodeQL workflow +- Learn how to use the CodeQL CLI to generate code scanning results and upload them to GitHub +- Implement custom build steps + +## Prerequisites + +- A GitHub enterprise account with a GitHub Advanced Security license +- Necessary permissions to administrate your repository +- Knowledge of GitHub Advanced Security's code scanning feature +- Knowledge of GitHub Actions + Next up, you'll learn how CodeQL is used by developers.