Hi there. Welcome to managing code quality and security policies with Azure DevOps. My name is Thomas Mitchell and I will be taking you through this course.

I am in Azure instructor at Cloud Academy and I have over 25 years of IT experience, several of those with cloud technologies. If you have any questions about this course, feel free to connect with me on LinkedIn, or send an email to support@cloudacademy.com.

This course is intended for those who are preparing for the AZ-400 exam. To get the most from this course, you should have a basic understanding of Microsoft Azure and of DevOps concepts.

We will start things off by looking at the definition of code quality. After defining what code quality means, we'll dive into what it takes to write high-quality code.

Next, we’ll look at what goes into code quality scanning and at how SonarCloud can help monitor code quality.

Once we've worked through code quality scanning and monitoring code quality, you'll see a hands-on demonstration that shows you how to use SonarCloud in the pipeline.

As we progress, we'll look at what code coverage means and how to use the “Publish Code Coverage Results” task to report on code coverage.

Later on, we’ll touch on security policies, where you’ll learn about the OWASP and its Top-10 list. We’ll take a look at 5 of the top entries in the OWASP Top-10.

We’ll round out the course by looking at a couple of popular security analysis tools.

By the time you finish this course, you should have the foundational knowledge that is required to effectively manage code quality and security policies.

We would love to get your feedback on this course, so please give it a rating when you’re finished. If you’re ready to learn about code quality and security policies, let’s get started!

Lectures

Code Quality Defined - Monitoring Code Quality - Reporting on Code Coverage - The OWASP Top Ten - Security Analysis Tools - DEMO: Configuring SonarCloud in a Pipeline - Course Summary