From 33e169656e57805790f3475578c832730f23a6c8 Mon Sep 17 00:00:00 2001 From: Coli Alessandro Date: Wed, 1 Oct 2025 16:04:36 +0200 Subject: [PATCH 1/4] Create README.md --- .../executable-tutorial/acoli-cocco/README.md | 27 +++++++++++++++++++ 1 file changed, 27 insertions(+) create mode 100644 contributions/executable-tutorial/acoli-cocco/README.md diff --git a/contributions/executable-tutorial/acoli-cocco/README.md b/contributions/executable-tutorial/acoli-cocco/README.md new file mode 100644 index 000000000..5ecb78433 --- /dev/null +++ b/contributions/executable-tutorial/acoli-cocco/README.md @@ -0,0 +1,27 @@ +# Assignment Proposal + +## Title + +_Zero-Trust Data Pipelines: A Practical DevOps Security Tutorial_ + +## Names and KTH ID + + - Coli Alessandro (acoli@kth.se) + - Cocco Riccardo (cocco@kth.se) + +## Deadline + +- Task 3 + +## Category + +- Executable tutorial + +## Description + +This interactive tutorial will provide students some training and explaination in securing data pipelines against threats. Through a few simple guided changes to a sample code, participants will transform vulnerable data practices into automated, verifiable security workflows. The tutorial will cover basics in cryptographic integrity verification, CI/CD security gates, incident response, and continuous monitoring. +All implemented through practical code that runs directly in colab. + +**Relevance** + +One of the most expensive and common reasons for DevOps pipeline failures is data integrity issues. The ability to have automated security controls in place becomes crucial as DevOps teams handle sensitive data across distributed systems more frequently. This tutorial bridges the gap between security theory and real-world application, giving DevOps students useful skills. From cf44fcf08efb2d66bc2cd92996b2a6a29644b029 Mon Sep 17 00:00:00 2001 From: Coli Alessandro Date: Thu, 2 Oct 2025 15:23:30 +0200 Subject: [PATCH 2/4] Update README.md --- .../executable-tutorial/acoli-cocco/README.md | 21 +++++++++++++++++-- 1 file changed, 19 insertions(+), 2 deletions(-) diff --git a/contributions/executable-tutorial/acoli-cocco/README.md b/contributions/executable-tutorial/acoli-cocco/README.md index 5ecb78433..5ed478254 100644 --- a/contributions/executable-tutorial/acoli-cocco/README.md +++ b/contributions/executable-tutorial/acoli-cocco/README.md @@ -19,8 +19,25 @@ _Zero-Trust Data Pipelines: A Practical DevOps Security Tutorial_ ## Description -This interactive tutorial will provide students some training and explaination in securing data pipelines against threats. Through a few simple guided changes to a sample code, participants will transform vulnerable data practices into automated, verifiable security workflows. The tutorial will cover basics in cryptographic integrity verification, CI/CD security gates, incident response, and continuous monitoring. -All implemented through practical code that runs directly in colab. +## Description + +This interactive tutorial will provide students with some training and explanation on securing pipelines against threats. It will guide people in transforming a vulnerable deployment workflow into a secure, automated pipeline by implementing security controls that run automatically during build and deployment processes. + +Specifically, it will have students add good practices inside their code: + +- **Pre-commit security states**: automated integrity verification, blocking deployments when data integrity checks fail. +- **Build time srotection**: cryptographic hashing and secret scanning to prevent credential exposure in pipeline artifacts. +- **Deployment controls**: automated security validation and rollback mechanism, enforcing security standards before deployment +- **Pipeline incident response**: continuous security validation throughout lifecycle. + +The **intended learning outcomes** of our tutorial are: + +- Implement automated security gates in CI/CD workflows +- Configure integrity verification in pipelines +- Build deployment security controls that maintain DevOps velocity +- Automate security incident response within pipeline operations + +All exercises run directly in Colab using GitHub Actions examples and pipeline configuration patterns that participants can immediately apply to their workflows. **Relevance** From 8415b61adb3dcf56ce60bad4d2af8b51aa798db0 Mon Sep 17 00:00:00 2001 From: Coli Alessandro Date: Thu, 2 Oct 2025 15:25:03 +0200 Subject: [PATCH 3/4] Update README.md --- contributions/executable-tutorial/acoli-cocco/README.md | 2 -- 1 file changed, 2 deletions(-) diff --git a/contributions/executable-tutorial/acoli-cocco/README.md b/contributions/executable-tutorial/acoli-cocco/README.md index 5ed478254..081a5f8db 100644 --- a/contributions/executable-tutorial/acoli-cocco/README.md +++ b/contributions/executable-tutorial/acoli-cocco/README.md @@ -19,8 +19,6 @@ _Zero-Trust Data Pipelines: A Practical DevOps Security Tutorial_ ## Description -## Description - This interactive tutorial will provide students with some training and explanation on securing pipelines against threats. It will guide people in transforming a vulnerable deployment workflow into a secure, automated pipeline by implementing security controls that run automatically during build and deployment processes. Specifically, it will have students add good practices inside their code: From 8f84b0b7ca8f3af784ed774bf4fc4d1c5b8ac6df Mon Sep 17 00:00:00 2001 From: Coli Alessandro Date: Wed, 8 Oct 2025 11:42:36 +0200 Subject: [PATCH 4/4] Added link to tutorial --- contributions/executable-tutorial/acoli-cocco/README.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/contributions/executable-tutorial/acoli-cocco/README.md b/contributions/executable-tutorial/acoli-cocco/README.md index 081a5f8db..09f6007b2 100644 --- a/contributions/executable-tutorial/acoli-cocco/README.md +++ b/contributions/executable-tutorial/acoli-cocco/README.md @@ -19,6 +19,8 @@ _Zero-Trust Data Pipelines: A Practical DevOps Security Tutorial_ ## Description +The tutorial can be found at https://colab.research.google.com/drive/1Qak_zpwuk8imhXdM1hchimNOjuk5eGtC?usp=sharing + This interactive tutorial will provide students with some training and explanation on securing pipelines against threats. It will guide people in transforming a vulnerable deployment workflow into a secure, automated pipeline by implementing security controls that run automatically during build and deployment processes. Specifically, it will have students add good practices inside their code: