scp -i mykey.pem somefile.txt root@my.ec2.id.amazonaws.com:/
https://stackoverflow.com/questions/6558080/scp-secure-copy-to-ec2-instance-without-password
scp -i mykey.pem somefile.txt root@my.ec2.id.amazonaws.com:/
https://stackoverflow.com/questions/6558080/scp-secure-copy-to-ec2-instance-without-password
setgid Creates a file using owner rather than user creating it
setuid sets the permission of execution
sticky bits - Accidental Delete Protection Bit
https://geek-university.com/linux/uid-user-identifier-gid-group-identifier/
https://marketplace.visualstudio.com/items?itemName=dependency-check.dependencycheck
Dependency-Check is a software composition analysis utility that identifies project dependencies and checks if there are any known, publicly disclosed, vulnerabilities. Currently, Java and .NET are supported; additional experimental support has been added for Ruby, Node.js, Python, and limited support for C/C++ build systems (autoconf and cmake)
The OWASP Dependency Check Azure DevOps Extension enables the following features in an Azure Build Pipeline:
Software composition analysis runs against package references during build on both Windows and Linux build agents.
Export vulnerability data to HTML, JSON, XML, CSV, JUnit formatted reports
Download vulnerability reports from the build's artifacts
https://learn.microsoft.com/en-us/azure/devops/pipelines/process/approvals?view=azure-devops&tabs=check-pass