Security Tooling

Let's use Copilot's vast amount of pre-existing knowledge to help us identify various tools/additions that may help us strengthen our application. Not only will Copilot be able to provide knowledge about general security tooling, but if we prompt it right, it will cater its recommendations to the specifics of our application. Let's use the following prompt:

Prompt Copilot for security tooling suggestions

@workspace what kind of tooling/additions could be added to this project to upgrade it's security posturing?

As we can see, Copilot gives us a wide range of suggestions to consider when thinking about the security posturing of our application. Let's continuing using Copilot to dig deeper into some of it's suggestions.

Prompt Copilot for more information on GitHub Advanced Security (GHAS)

@workspace What is GitHub Advanced Security and how would it help strengthen the security of this project?

Copilot not only gave us the information we asked for, but it even started down the path of demonstrating how we could actually add GitHub Advanced Security (GHAS) to our project. Copilot is great for both analysis and implementation steps as we embark on our mission to strengthen the security of our project.