-
Notifications
You must be signed in to change notification settings - Fork 10
Expand file tree
/
Copy pathDevSecOps.cshtml
More file actions
169 lines (156 loc) · 6.96 KB
/
DevSecOps.cshtml
File metadata and controls
169 lines (156 loc) · 6.96 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
@page
@model DevSecOpsModel
@{
ViewData["Title"] = "DevSecOps & GitHub Advanced Security";
}
<div class="container">
<div class="row">
<div class="col-md-12">
<h1 class="display-4 text-primary">@ViewData["Title"]</h1>
<hr />
</div>
</div>
<div class="row">
<div class="col-md-8">
<div class="card mb-4">
<div class="card-header bg-primary text-white">
<h3 class="mb-0"><i class="bi bi-newspaper"></i> Latest GHAS News & Updates</h3>
</div>
<div class="card-body">
<p class="lead">Stay up-to-date with the latest GitHub Advanced Security features and enhancements:</p>
@if (Model.LatestNews.Any())
{
<ul class="list-group list-group-flush">
@foreach (var newsItem in Model.LatestNews)
{
<li class="list-group-item">
<i class="bi bi-check-circle text-success me-2"></i>
@newsItem
</li>
}
</ul>
}
</div>
</div>
<div class="card mb-4">
<div class="card-header bg-success text-white">
<h4 class="mb-0"><i class="bi bi-shield-check"></i> DevSecOps Best Practices</h4>
</div>
<div class="card-body">
<div class="row">
<div class="col-md-6">
<h5>Security in Development</h5>
<ul>
<li>Shift-left security testing</li>
<li>Automated code scanning</li>
<li>Secret detection & management</li>
<li>Dependency vulnerability scanning</li>
</ul>
</div>
<div class="col-md-6">
<h5>GHAS Integration</h5>
<ul>
<li>CodeQL static analysis</li>
<li>Dependabot alerts & updates</li>
<li>Security advisories</li>
<li>Supply chain protection</li>
</ul>
</div>
</div>
</div>
</div>
</div>
<div class="col-md-4">
<div class="card mb-4">
<div class="card-header bg-warning text-dark">
<h5 class="mb-0"><i class="bi bi-exclamation-triangle"></i> Demo Security Testing</h5>
</div>
<div class="card-body">
<p class="text-muted">This form demonstrates security vulnerabilities for educational purposes:</p>
<form method="post">
<div class="mb-3">
<label for="userInput" class="form-label">Test Input:</label>
<input type="text" class="form-control" id="userInput" name="userInput"
value="@Model.UserInput" placeholder="Enter test data...">
<small class="form-text text-muted">
⚠️ This input is intentionally vulnerable for demo purposes
</small>
</div>
<button type="submit" class="btn btn-warning">
<i class="bi bi-bug"></i> Test Vulnerabilities
</button>
</form>
@if (!string.IsNullOrEmpty(Model.UserInput))
{
<div class="mt-3 alert alert-info">
<strong>Input processed:</strong> @Model.UserInput
<br>
<small>Check application logs for security demonstrations</small>
</div>
}
</div>
</div>
<div class="card">
<div class="card-header bg-info text-white">
<h5 class="mb-0"><i class="bi bi-link-45deg"></i> GHAS Resources</h5>
</div>
<div class="card-body">
<div class="d-grid gap-2">
<a href="https://docs.github.com/en/code-security" target="_blank" class="btn btn-outline-primary btn-sm">
Code Security Docs
</a>
<a href="https://docs.github.com/en/code-security/code-scanning" target="_blank" class="btn btn-outline-primary btn-sm">
Code Scanning Guide
</a>
<a href="https://docs.github.com/en/code-security/secret-scanning" target="_blank" class="btn btn-outline-primary btn-sm">
Secret Scanning
</a>
<a href="https://docs.github.com/en/code-security/dependabot" target="_blank" class="btn btn-outline-primary btn-sm">
Dependabot
</a>
<a href="https://docs.github.com/en/code-security/security-advisories" target="_blank" class="btn btn-outline-primary btn-sm">
Security Advisories
</a>
</div>
</div>
</div>
</div>
</div>
<div class="row mt-4">
<div class="col-md-12">
<div class="alert alert-warning">
<i class="bi bi-exclamation-triangle-fill"></i>
<strong>Educational Demo:</strong> This page contains intentionally vulnerable code patterns for GitHub Advanced Security demonstration purposes.
Never use these patterns in production environments.
</div>
</div>
</div>
</div>
@section Scripts {
<script>
// Enhance the demo experience
document.addEventListener('DOMContentLoaded', function() {
const newsItems = document.querySelectorAll('.list-group-item');
newsItems.forEach((item, index) => {
setTimeout(() => {
item.style.opacity = '1';
item.style.transform = 'translateX(0)';
}, index * 100);
});
});
</script>
}
<style>
.list-group-item {
opacity: 0;
transform: translateX(-20px);
transition: all 0.3s ease;
}
.card {
box-shadow: 0 2px 10px rgba(0,0,0,0.1);
transition: transform 0.2s ease;
}
.card:hover {
transform: translateY(-2px);
}
</style>