PRE-CONFERENCE TRAINING
Join us on Monday, April 1 at 10:30 am for pre-conference training designed to help you maximize the value your organization gets from Black Duck's open source security and management solutions.
Throughout the day you'll benefit from hands-on training by product experts and interact with fellow customers during in-depth product discussions.
Training is £200. Please bring your own laptop and power cord for this hands on training.
Integrating Black Duck into your SDLC
Whether you’re new to Black Duck or a seasoned user, this is the perfect opportunity to learn from Black Duck product experts in a hands-on environment. We’ll focus on the critical steps in building out a Black Duck environment to quickly realize value from your investment. With Black Duck installed within our Docker-based environment, we’ll review how to navigate the Black Duck user interface and perform basic administrative options for configuring users, groups, and project access.
You’ll learn how easy it is to invoke Black Duck analysis during all phases of the software development workflow, including using Black Duck IDE and binary repository plugins to uncover open source risk during the development phase. You’ll discover how to identify risk during the application build process by configuring Black Duck Detect as part of a continuous integration workflow.
With scan results in hand, we’ll cover:
· Best practices for reviewing your scan results
· How to determine where to focus your vulnerability remediation efforts
· How to compare risk from one project version to another.
You’ll learn how to implement Black Duck Component, License, and Policy Management features to accommodate your organization’s unique open source needs and allow you to flag high-risk code and review exceptions in your projects. We’ll then showcase the triage, review, and editing features available for your project bill of materials. We’ll also experiment with different ways to notify others of your scan results by connecting Black Duck to external systems like Jira, email, and Slack.
We’ll conclude by examining how to extract meaningful project data from Black Duck by connecting it to an external reporting tool via the Black Duck Report Database.
Please bring your laptop as this session is hands-on.
We’ll conclude by examining how to extract meaningful project data from Hub and by connecting it to an external reporting tool via the Black Duck Report Database.