Sponsor Link: https://snyk.co/ippsec
00:00 - Introduction Promoting Snyk
01:25 - Showing why we are using VSCode and not Codium
02:30 - Showing Ansible Galaxy, which are community provided roles. Specifically the Visual Studio Code one and creating requirements.yml
03:50 - Adding the Visual Studio Code role to our playbook and installing a couple extensions
05:30 - Going to the Visual Studio Code Marketplace and showing how we get extension names to add to our playbook, then running our playbook
07:20 - Opening VS Code and Signing in to Copilot, then showing it do some predictive typing with python
09:25 - Showing Autopilot works with Ansible Playbooks
11:10 - Downloading the web application on TwoMillion, so we can use Snyk to analyze it
12:28 - Installing the Snyk VSCode Plugin
13:50 - Opening VS Code and authenticating with Snyk
14:30 - Talking about Snyk Open Source Security
14:40 - Enabling Snyk Code Scanning to have it scan our code and find vulnerabilities
16:15 - Showing Snyk find the RCE Vulnerability and it providing examples on how other applications fixed the vulnerability
17:20 - Installing an PHP Extension to enable our IDE to have better PHP Support and easily see where functions are called
18:30 - Diving into the RCE Vulnerability and figuring out HTTP Endpoint that is vulnerable to it
21:15 - Patching the vulnerability
22:00 - Showing the code Quality Piece and it talking about unreachable code
24:15 - Playing with Copilot, adding a new HTTP Endpoint to delete a VPN and seeing how much code it will auto suggest
27:00 - Closing thoughts, talking about future videos in this series
Support the originator by clicking the read the rest link below.
