“Shifting Cybersecurity to the Left”

Come learn about how you can secure development inside of GitLabs, including code scanning and static analysis before a merge rather than after. 

1. Intro to GitLabs version control showing how you can store your code in GitLabs
2. Checkout from GitLabs and make change based on user story from backlog (customers are using a variety of tracking methods and we can tailor the epics to match their methods)
3. GitLab merge request showing how you can do asynchronous peer review 
4. Show how you can do build and testing within the GitLab environment *** 
5. Show how GitLabs can perform static analysis, dynamic analysis, coding standards, and cybersecurity scanning in their environment
6. Show a correction in Innovation Factory
7. Detailed discussion about how you can plug other scanners or coding standards into GitLabs
8. Focus on how this improves continuous integration and describe why checking in often is better than committing at long intervals
9. Show a defect in GitLabs and how that can be traced to a specific merge 
10. Show metrics in GitLabs for things like SLOC or defect resolution or story completion or merges…basically just do a brief 15 minutes of “Here’s all the pretty metrics we automatically generate”