Conference PaperAuthentic Learning on DevOps Security with Labware: Git Hooks To Facilitate Automated Security Static AnalysisRahman, Md_Mostafizur; Barek, Md_Abdul; Akter, Mst_Shapna; Riad, Abm_Kamrul_Islam; Rahman, Md_Abdur; Shahriar, Hossain; Rahman, Akond; Wu, FanThis paper presents an innovative approach to DevOps security education, addressing the dynamic landscape of cybersecurity threats. We propose a student-centered learning methodology by developing comprehensive hands-on learning modules. Specifically, we introduce labware modules designed to automate static security analysis, empowering learners to identify known vulnerabilities efficiently. These modules offer a structured learning experience with pre-lab, hands-on, and post-lab sections, guiding students through DevOps concepts and security challenges. In this paper, we introduce hands-on learning modules that familiarize students with recognizing known security flaws through the application of Git Hooks. Through practical exercises with real-world code examples containing security flaws, students gain proficiency in detecting vulnerabilities using relevant tools. Initial evaluations conducted across educational institutions indicate that these hands-on modules foster student interest in software security and cybersecurity and equip them with practical skills to address DevOps security vulnerabilities.IEEE2024-07-3110509026Proc. of The 48th IEEE International Conference on Computers, Software, and Applications (COMPSAC 2024)https://doi.org/2310179DevOps security educationvulnerabilitiesGitGit Hookssecurity vulnerabilitiesauthentic learningOsaka, JapanNational Science Foundation