December 2024

New

Quests

It is now possible to switch on Quests for both Admins and Learners via the Preview option. Have you tried Quests yet?

Quests Report

Quests now has a full-featured report, that shows:

• Coverage:
  • Who has been assigned objectives
  • Who is not included because they need to select a language
  • Who is not included because the topics covered by the Quest don't apply to the languages they've selected
• Progress
  • Who hasn't started, is in progress, and who has completed the Quest
• Vulnerability objective completion
  • How many of the learners assigned have completed each objective
  • Coming soon: Accuracy! How did learners do in the Challenge and Quiz components of each topic

New visualisations in the Trust Score report!

The Trust Score report now includes a series of visualisations to help better find the opportunities to improve your score. These are:

• Trust Score over time
  See how your Company's score has changed over the last 6 months.
• Learner role breakdown
  Highlight which types of developers are most prevalent in your organisation, to help focus in on how to improve their skill level
• Vulnerability concept coverage
  For the first time, see inside the internals of the score and how it measures coverage of vulnerability topics for each developer role. Identify opportunities to improve breadth of coverage (provide training in more of the vulnerability topics listed) or depth of coverage (take specific topics, and get learners to complete a wider variety of the available activities).

For more information on how to use these visuals to identify opportunities to improve the score, see Secure Code Warrior Trust Score: How to improve your Score

Trust Agent

The Trust Agent GitHub App has been enhanced with framework detection capability to enable more accurate identification of the technologies used by your development teams.

New Course Templates

Secure Development for Healthcare

This course explores the compliance landscape for healthcare applications and medical device software, focusing on legal requirements and best practices for protecting sensitive health information. This course is suitable for Architects, Engineers, Engineering Managers, QA, and PMs: essentially anyone working on development projects for the healthcare industry.

Introduction to CCPA

This course will provide all necessary guidelines to ensure that your applications achieve compliance with the CCPA (California Consumer Privacy Act). It details the required notices that must be provided to consumers and outlines the processes for implementing them effectively. This course is suitable for Architects, Engineers, Engineering Managers, QA, and PMs: anyone working on development projects delivered to customers in California under CCPA's remit.

Introduction to GDPR

This course covers the principles, roles, and regulations of personal data use, focusing on data subject rights and the impact of GDPR on the software development lifecycle. This course is suitable for Architects, Engineers, Engineering Managers, QA, and PMs: anyone working on development projects delivered to customers in the European Union under GDPR's remit.

GDPR for Development and Project Managers

This intermediate course covers GDPR principles for developers and project managers. Topics include data protection by design, data subject rights, design and production requirements, privacy impact assessments, data sharing, and international transfers. This course is suitable for Architects, Engineers, Engineering Managers, Product Managers, Business Analysts, and Project Managers.

GDPR for Developers and Architects

This intermediate course covers GDPR principles and requirements for software developers and architects. Topics include obtaining consent, managing personal data access and sharing, data subject access requests, and international data transfers. We recommend taking the Introduction to GDPR course prior to taking this course. This course is suitable for Architects, Engineers, Data Engineers and Data Scientists, and Engineering Managers.