Skip to content

Commit 8e8e8d5

Browse files
CopilotCalinL
Copilot
and
CalinL
committed
Create DevSecOps3 page with GHAS features and security demos
Co-authored-by: CalinL <[email protected]>
1 parent 419c6b0 commit 8e8e8d5

File tree

3 files changed

+471
-0
lines changed

3 files changed

+471
-0
lines changed

src/webapp01/Pages/DevSecOps3.cshtml

Lines changed: 223 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,223 @@
1+
@page
2+
@model DevSecOps3Model
3+
@{
4+
ViewData["Title"] = "DevSecOps3 - Advanced GitHub Security Demo";
5+
}
6+
7+
<div class="container">
8+
<div class="row">
9+
<div class="col-12">
10+
<h1 class="display-4 text-primary">@ViewData["Title"]</h1>
11+
<p class="lead">Explore the cutting-edge features and capabilities of GitHub Advanced Security (GHAS)</p>
12+
<hr />
13+
</div>
14+
</div>
15+
16+
<!-- Alert for TempData messages -->
17+
@if (TempData["SecurityDemoResult"] != null)
18+
{
19+
<div class="alert alert-info alert-dismissible fade show" role="alert">
20+
@TempData["SecurityDemoResult"]
21+
<button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>
22+
</div>
23+
}
24+
25+
@if (TempData["SecurityDemoError"] != null)
26+
{
27+
<div class="alert alert-danger alert-dismissible fade show" role="alert">
28+
@TempData["SecurityDemoError"]
29+
<button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>
30+
</div>
31+
}
32+
33+
<div class="row">
34+
<!-- Latest GHAS News Section -->
35+
<div class="col-lg-8">
36+
<div class="card mb-4">
37+
<div class="card-header bg-gradient" style="background: linear-gradient(135deg, #0366d6, #6f42c1);">
38+
<h3 class="card-title mb-0 text-white">
39+
<i class="bi bi-shield-check"></i> Latest GitHub Advanced Security Updates 2024
40+
</h3>
41+
</div>
42+
<div class="card-body">
43+
@if (Model.LatestGHASNews.Any())
44+
{
45+
<div class="list-group list-group-flush">
46+
@foreach (var newsItem in Model.LatestGHASNews)
47+
{
48+
<div class="list-group-item d-flex align-items-start">
49+
<span class="badge bg-gradient text-white me-3 mt-1" style="background: linear-gradient(45deg, #28a745, #20c997);">LATEST</span>
50+
<div>
51+
<p class="mb-1">@newsItem</p>
52+
<small class="text-muted">Updated with latest GHAS capabilities</small>
53+
</div>
54+
</div>
55+
}
56+
</div>
57+
}
58+
else
59+
{
60+
<p class="text-muted">No news available at this time.</p>
61+
}
62+
</div>
63+
</div>
64+
65+
<!-- Enhanced GHAS Features Overview -->
66+
<div class="card mb-4">
67+
<div class="card-header bg-dark text-white">
68+
<h3 class="card-title mb-0">Enhanced GHAS Features Portfolio</h3>
69+
</div>
70+
<div class="card-body">
71+
<div class="row">
72+
<div class="col-md-6">
73+
<h5><i class="bi bi-cpu"></i> AI-Powered Code Scanning</h5>
74+
<p>Next-generation CodeQL with machine learning enhanced vulnerability detection and fix suggestions.</p>
75+
76+
<h5><i class="bi bi-shield-lock"></i> Advanced Secret Scanning</h5>
77+
<p>Comprehensive secret detection with custom patterns and push protection across all repositories.</p>
78+
79+
<h5><i class="bi bi-graph-up-arrow"></i> Dependency Insights</h5>
80+
<p>Deep dependency analysis with supply chain attack detection and automated security updates.</p>
81+
</div>
82+
<div class="col-md-6">
83+
<h5><i class="bi bi-cloud-security"></i> Security Policies</h5>
84+
<p>Organization-wide security policy enforcement with compliance tracking and reporting.</p>
85+
86+
<h5><i class="bi bi-speedometer2"></i> Real-time Monitoring</h5>
87+
<p>Continuous security monitoring with instant alerts and automated incident response.</p>
88+
89+
<h5><i class="bi bi-people"></i> Team Collaboration</h5>
90+
<p>Enhanced security workflows with developer-friendly remediation guidance and training.</p>
91+
</div>
92+
</div>
93+
</div>
94+
</div>
95+
</div>
96+
97+
<!-- Advanced Security Demo Sidebar -->
98+
<div class="col-lg-4">
99+
<!-- Enhanced Security Demo Section -->
100+
<div class="card mb-4">
101+
<div class="card-header bg-warning text-dark">
102+
<h4 class="card-title mb-0">
103+
<i class="bi bi-exclamation-triangle-fill"></i> Advanced Security Demo
104+
</h4>
105+
</div>
106+
<div class="card-body">
107+
<p class="text-muted small">
108+
This demonstration includes intentionally vulnerable code patterns for GHAS testing.
109+
These vulnerabilities showcase advanced scanning capabilities.
110+
</p>
111+
112+
<!-- Enhanced Regex Testing Form -->
113+
<form method="post" asp-page-handler="TestAdvancedRegex" class="mt-3">
114+
<div class="mb-3">
115+
<label for="regexPattern" class="form-label">Advanced Regex Pattern:</label>
116+
<input type="text" class="form-control" id="regexPattern" name="pattern"
117+
placeholder="Enter complex regex pattern" value="(a+)+b">
118+
<div class="form-text">Test patterns that may cause ReDoS vulnerabilities</div>
119+
</div>
120+
<div class="mb-3">
121+
<label for="testInput" class="form-label">Test Input:</label>
122+
<input type="text" class="form-control" id="testInput" name="input"
123+
placeholder="Enter test string" value="aaaaaaaaaaaaaaaaaaaaX">
124+
</div>
125+
<button type="submit" class="btn btn-warning btn-sm">
126+
<i class="bi bi-play-circle"></i> Execute Advanced Test
127+
</button>
128+
</form>
129+
130+
<!-- SQL Injection Demo -->
131+
<form method="post" asp-page-handler="TestSqlDemo" class="mt-4">
132+
<div class="mb-3">
133+
<label for="userId" class="form-label">User ID Lookup:</label>
134+
<input type="text" class="form-control" id="userId" name="userId"
135+
placeholder="Enter user ID" value="1">
136+
<div class="form-text">Demonstrates SQL injection vulnerabilities</div>
137+
</div>
138+
<button type="submit" class="btn btn-danger btn-sm">
139+
<i class="bi bi-database"></i> Test SQL Query
140+
</button>
141+
</form>
142+
</div>
143+
</div>
144+
145+
<!-- GHAS Resources -->
146+
<div class="card">
147+
<div class="card-header bg-info text-white">
148+
<h4 class="card-title mb-0">
149+
<i class="bi bi-book"></i> GHAS Resources
150+
</h4>
151+
</div>
152+
<div class="card-body">
153+
<div class="d-grid gap-2">
154+
<a href="https://docs.github.com/en/code-security/getting-started/github-security-features"
155+
class="btn btn-outline-primary btn-sm" target="_blank">
156+
<i class="bi bi-shield-check"></i> Security Features Guide
157+
</a>
158+
<a href="https://github.com/github/codeql"
159+
class="btn btn-outline-secondary btn-sm" target="_blank">
160+
<i class="bi bi-github"></i> CodeQL Repository
161+
</a>
162+
<a href="https://docs.github.com/en/code-security/code-scanning"
163+
class="btn btn-outline-success btn-sm" target="_blank">
164+
<i class="bi bi-search"></i> Code Scanning Docs
165+
</a>
166+
<a href="https://docs.github.com/en/code-security/secret-scanning"
167+
class="btn btn-outline-warning btn-sm" target="_blank">
168+
<i class="bi bi-key"></i> Secret Scanning Guide
169+
</a>
170+
<a href="https://docs.github.com/en/code-security/dependabot"
171+
class="btn btn-outline-info btn-sm" target="_blank">
172+
<i class="bi bi-robot"></i> Dependabot Security
173+
</a>
174+
</div>
175+
</div>
176+
</div>
177+
</div>
178+
</div>
179+
180+
<!-- Advanced Features Section -->
181+
<div class="row mt-5">
182+
<div class="col-12">
183+
<div class="card">
184+
<div class="card-header bg-gradient text-white" style="background: linear-gradient(135deg, #6f42c1, #e83e8c);">
185+
<h3 class="card-title mb-0">
186+
<i class="bi bi-rocket"></i> Advanced GHAS Capabilities & Future Roadmap
187+
</h3>
188+
</div>
189+
<div class="card-body">
190+
<div class="row">
191+
<div class="col-md-4">
192+
<h5 class="text-primary">AI-Enhanced Security</h5>
193+
<ul class="list-unstyled">
194+
<li><i class="bi bi-check-circle text-success"></i> Machine learning vulnerability detection</li>
195+
<li><i class="bi bi-check-circle text-success"></i> Automated fix suggestions</li>
196+
<li><i class="bi bi-check-circle text-success"></i> Smart false positive reduction</li>
197+
<li><i class="bi bi-check-circle text-success"></i> Contextual security insights</li>
198+
</ul>
199+
</div>
200+
<div class="col-md-4">
201+
<h5 class="text-success">Supply Chain Security</h5>
202+
<ul class="list-unstyled">
203+
<li><i class="bi bi-check-circle text-success"></i> Comprehensive dependency scanning</li>
204+
<li><i class="bi bi-check-circle text-success"></i> Software bill of materials (SBOM)</li>
205+
<li><i class="bi bi-check-circle text-success"></i> Provenance tracking</li>
206+
<li><i class="bi bi-check-circle text-success"></i> Malicious package detection</li>
207+
</ul>
208+
</div>
209+
<div class="col-md-4">
210+
<h5 class="text-warning">Enterprise Integration</h5>
211+
<ul class="list-unstyled">
212+
<li><i class="bi bi-check-circle text-success"></i> SIEM/SOAR integration</li>
213+
<li><i class="bi bi-check-circle text-success"></i> Compliance reporting</li>
214+
<li><i class="bi bi-check-circle text-success"></i> Custom security policies</li>
215+
<li><i class="bi bi-check-circle text-success"></i> Advanced metrics & dashboards</li>
216+
</ul>
217+
</div>
218+
</div>
219+
</div>
220+
</div>
221+
</div>
222+
</div>
223+
</div>

0 commit comments

Comments
 (0)