The document discusses security in DevOps and outlines an agenda for ensuring license compliance, getting real-time alerts on security vulnerabilities, generating automated inventory reports, and tracking outdated libraries in projects. It recommends installing the WhiteSource Bolt extension and deploying a demo project to demonstrate how these security features work. References for further information are also provided.

1. www.techconnect.io
Security in OSS DevOps
Eng Soon Cheah
@CheahEngSoon

2. Agenda
• Get Real-Time Alerts on Security Vulnerabilities
• Ensure license compliance
• Automated Up-to-Date Inventory Reports
• Track the Outdated Libraries in Your Project
• DEMO
• References

3. Get Real-Time Alerts on Security Vulnerabilities

4. Ensure license compliance

5. Automated Up-to-Date Inventory Reports

6. Track the Outdated Libraries in Your Project

7. Prerequisites
• Install WhiteSource Bolt from Visual Studio Marketplace.
(https://marketplace.visualstudio.com/items?itemName=whiteso
urce.ws-bolt)
• Deploy Project from Azure DevOps Demo Generator to Azure
DevOps Account
(https://azuredevopsdemogenerator.azurewebsites.net/)

8. DEMO

24. References
• WhiteSource Bolt Azure DevOps Lab
https://www.azuredevopslabs.com/labs/vstsextend/whitesource/
• Blog (Azure Security Center)
http://www.techconnect.io/category/azure-security/
• YouTube Channel
https://www.youtube.com/user/cheahengsoon

25. www.techconnect.io