Efficient Code Reviews with CodeQL & Unpacking GitHub Copilot: Advanced Tricks

18:00 - 18:30 - Gathering & mingling 🍻
18:30 - 18:45 - Opening notes 🎉
18:45 - 19:15 - Efficient Code Reviews with CodeQL
19:15 - 19:45 - Unpacking GitHub Copilot: Advanced Tricks

--------------------------------Full-Agenda-Below---------------------------------

18:30 - 18:45 - Introduction & Community updates

18:45 - 19:15 - Efficient Code Reviews with CodeQL by Uriel Yair (Application Security Tech Lead @ Comsec)

Let’s talk about code reviews, no, not those you are so used to (and exhausted from..). There are other kinds, the one that drives developers nuts from getting them to heaven… I mean production.

I want to introduce the security-oriented code review and how we can speed up the process with a bit of the help of CodeQL.

In this talk we’ll speak about CodeQL, what it does, why is it here in the first place, and why companies really need it. We’ll try to understand if we can save some of our costs on the application security team because we have another pair of eyes that watch over our codebase so we might miss a few spots here and there. At last, we will see how to use CodeQL in our GitHub repository.

19:15 - 19:45 - Unpacking GitHub Copilot: Advanced Tricks by Eyar Zilberman (CPO @ Datree)

We already know that GitHub copilot is super cool, and you have even had it installed on your IDE, but are you sure you're leveraging its full capabilities to write better (and faster) code?

In this session, we will review some advanced usage of Copilot, and we will deep dive into how to customize it to your needs. We will also discuss the downsides of the tool and how to make sure copilot will not replace us all as developers in the future ;)