Secret scanning? Check. Dependency Management? Check. Static Code Analysis? Check. You manage your secure software development platform, right?

If you are an organisation using Azure DevOps is highly likely that you either have a mash-up of tools making up your development platform, or you are shortly going to look at one, because you know how important it is. It is however quite tricky to get right and there are a number of pitfalls in successfully setting up one, given the lack of standard offerings.

Microsoft recently announced the long-awaited release of GitHub Advanced Security for Azure DevOps, bridging a long-time gap of the platform. Let's have a look at how this changes the game in the secure DevOps space!