Xray Introduction (06:29)
Xray Architecture (07:52)
Xray Components (06:45)
JFrog Xray: Overview (2020+)
Improve DevSecOps in Software Delivery Automation Using JFrog Xray
Course Description: 25 minutes
In this short online course, we will provide an overview of the JFrog Xray DevSecOps tool, its architecture and accompanying components to enhance DevOps automation with full pledged DevSecOps insights and capabilities. We will also show you how Xray DevSecOps tool works at each step within the DevOps cycle for tracing vulnerable components and governing OSS (open source software) license compliance
Xray works with JFrog Artifactory to analyze binary files throughout their lifecycle beginning with the first inclusion in the source code through the build process and up to the production environment. With Artifactory, developers can automate the build process, and with Xray developers and security analysts can scan binaries for known security vulnerabilities and OSS license compliances. Scans include third-party libraries and external components that can lead to vulnerabilities and future issues. This course covers this functionality and analysis of build files to prepare DevOps teams for secure deployments.
This course shows developers interested in Xray what it can do for the software development lifecycle (SDLC). The course offers an introduction into DevSecOps training and essentials and will demonstrate how Xray can help integrate security into current DevOps automation pipelines. Students will also learn the benefits of a deep scan and impact analysis on their binary files. Since Artifactory works well with Xray, it will help students understand course material if they already are familiar with Artifactory use and binary repositories in CI/CD pipelines but it’s not necessary.
What we will cover
- Open with an Xray introduction and its use in DevSecOps
- Discover Xray architecture and how it integrates with DevOps
- Explore Xray components useful in development and the SDLC
Who should take this DevSecOps course?
Any Xray administrator, Artifactory administrator, application security engineer, DevSecOps and DevOps engineers who are new to JFrog Xray will benefit from this course. It will guide the student in the ways testing for vulnerabilities is necessary for stable and reliable systems and the importance of scanning binary files for issues before professionals deploy them to production. Any DevOps manager or developer who wants to better secure their software and find ways to build code without vulnerabilities and bug issues will also benefit from this course.
In order to complete the course, you have to answer at least 70% of the quiz questions correctly.