Merge pull request #1 from timothywarner-org/claude/setup-repo-documentation-01ETtPEGWsub3u4W3gmoy4e1

Create README and repository metadata for cybersecurity training

Author: timothywarner

.github/REPOSITORY_SETTINGS.md

@@ -0,0 +1,84 @@
+# Repository Settings & Configuration
+
+This document outlines the recommended settings for the GitHub repository.
+
+## Repository Topics
+
+Add these topics to improve discoverability. Go to **Settings > General > Topics** or click "About" on the repo homepage.
+
+### Recommended Topics (copy-paste ready)
+
+```
+github-copilot
+cybersecurity
+security
+devsecops
+vulnerability-detection
+secure-coding
+owasp
+sql-injection
+xss
+penetration-testing
+sast
+dast
+compliance
+nist
+cis-benchmarks
+zero-trust
+threat-modeling
+security-automation
+incident-response
+infrastructure-as-code
+video-course
+training
+```
+
+### Topic Categories
+
+| Category | Topics |
+|----------|--------|
+| AI/Copilot | `github-copilot`, `ai-assisted-development`, `copilot-chat` |
+| Security | `cybersecurity`, `security`, `devsecops`, `secure-coding`, `appsec` |
+| Vulnerabilities | `owasp`, `vulnerability-detection`, `sql-injection`, `xss`, `penetration-testing` |
+| Testing | `sast`, `dast`, `security-testing`, `fuzz-testing` |
+| Compliance | `compliance`, `nist`, `cis-benchmarks`, `stig`, `security-compliance` |
+| Architecture | `zero-trust`, `threat-modeling`, `security-architecture` |
+| Automation | `security-automation`, `incident-response`, `infrastructure-as-code` |
+| Content Type | `video-course`, `training`, `tutorial`, `educational` |
+
+## Labels
+
+Labels are defined in `.github/labels.yml`. To sync labels:
+
+```bash
+# Using github-label-sync
+npx github-label-sync --access-token $GITHUB_TOKEN --labels .github/labels.yml timothywarner-org/github-security-testbed
+```
+
+## Repository Description
+
+**Suggested description:**
+> Hands-on demo repository for "GitHub Copilot for Cybersecurity Specialists" video course - vulnerability detection, security protocols, automated testing, and compliance automation.
+
+## Social Preview Image
+
+Consider adding a custom social preview image (1280x640 recommended) that includes:
+- Course title
+- Key topics (Copilot, Security, DevSecOps)
+- Professional security-themed design
+
+Upload at: **Settings > General > Social preview**
+
+## Branch Protection (Optional)
+
+For the main branch, consider enabling:
+- Require pull request reviews before merging
+- Require status checks to pass
+- Include administrators in restrictions
+
+## Security Settings
+
+- Enable Dependabot alerts
+- Enable Dependabot security updates
+- Enable secret scanning
+- Enable push protection for secrets

.github/labels.yml

@@ -0,0 +1,172 @@
+# GitHub Labels for Course Repository
+# These labels can be applied using GitHub's label management or tools like github-label-sync
+# Usage: npx github-label-sync --access-token [token] --labels .github/labels.yml [owner/repo]
+
+# =============================================================================
+# LESSON LABELS - Track content by lesson
+# =============================================================================
+- name: "lesson-01"
+  color: "1f77b4"
+  description: "Vulnerability Detection with GitHub Copilot"
+
+- name: "lesson-02"
+  color: "ff7f0e"
+  description: "Implement Security Protocols"
+
+- name: "lesson-03"
+  color: "2ca02c"
+  description: "Automated Security Testing"
+
+- name: "lesson-04"
+  color: "d62728"
+  description: "Security Code Review, Threat Modeling & Auditing"
+
+- name: "lesson-05"
+  color: "9467bd"
+  description: "Compliance, Incident Response & Configuration Management"
+
+# =============================================================================
+# SECURITY TOPIC LABELS - Categorize by security domain
+# =============================================================================
+- name: "security/vulnerability"
+  color: "b60205"
+  description: "Vulnerability detection and remediation"
+
+- name: "security/authentication"
+  color: "5319e7"
+  description: "Authentication and authorization topics"
+
+- name: "security/encryption"
+  color: "0e8a16"
+  description: "Encryption and cryptography"
+
+- name: "security/xss"
+  color: "d93f0b"
+  description: "Cross-Site Scripting (XSS) related"
+
+- name: "security/sql-injection"
+  color: "e99695"
+  description: "SQL Injection related"
+
+- name: "security/zero-trust"
+  color: "006b75"
+  description: "Zero Trust Architecture"
+
+- name: "security/compliance"
+  color: "fbca04"
+  description: "Compliance and regulatory topics (CIS, NIST, STIG)"
+
+- name: "security/incident-response"
+  color: "c2e0c6"
+  description: "Incident response and playbooks"
+
+# =============================================================================
+# CONTENT TYPE LABELS - Identify type of content
+# =============================================================================
+- name: "type/demo"
+  color: "0075ca"
+  description: "Demo code or walkthrough"
+
+- name: "type/exercise"
+  color: "7057ff"
+  description: "Hands-on exercise for learners"
+
+- name: "type/reference"
+  color: "d4c5f9"
+  description: "Reference material or documentation"
+
+- name: "type/template"
+  color: "bfdadc"
+  description: "Reusable template or boilerplate"
+
+- name: "type/prompt"
+  color: "c5def5"
+  description: "Copilot prompt examples"
+
+# =============================================================================
+# TOOL/TECHNOLOGY LABELS - Tag by tools used
+# =============================================================================
+- name: "tool/copilot"
+  color: "8A2BE2"
+  description: "GitHub Copilot related"
+
+- name: "tool/copilot-chat"
+  color: "6f42c1"
+  description: "Copilot Chat specific"
+
+- name: "tool/sast"
+  color: "1d76db"
+  description: "Static Application Security Testing"
+
+- name: "tool/dast"
+  color: "0366d6"
+  description: "Dynamic Application Security Testing"
+
+- name: "tool/terraform"
+  color: "5c4ee5"
+  description: "Terraform/Infrastructure as Code"
+
+- name: "tool/github-actions"
+  color: "2088ff"
+  description: "GitHub Actions CI/CD"
+
+# =============================================================================
+# STATUS LABELS - Track content status
+# =============================================================================
+- name: "status/ready"
+  color: "0e8a16"
+  description: "Content is ready for use"
+
+- name: "status/in-progress"
+  color: "fbca04"
+  description: "Content is being developed"
+
+- name: "status/needs-review"
+  color: "f9d0c4"
+  description: "Content needs review"
+
+- name: "status/needs-update"
+  color: "e4e669"
+  description: "Content needs updating"
+
+# =============================================================================
+# DIFFICULTY LABELS - Indicate complexity level
+# =============================================================================
+- name: "difficulty/beginner"
+  color: "7ee87e"
+  description: "Suitable for beginners"
+
+- name: "difficulty/intermediate"
+  color: "fef2c0"
+  description: "Intermediate level content"
+
+- name: "difficulty/advanced"
+  color: "f9a7a7"
+  description: "Advanced level content"
+
+# =============================================================================
+# GENERAL PURPOSE LABELS
+# =============================================================================
+- name: "good first issue"
+  color: "7057ff"
+  description: "Good for newcomers"
+
+- name: "help wanted"
+  color: "008672"
+  description: "Extra attention needed"
+
+- name: "question"
+  color: "d876e3"
+  description: "Further information requested"
+
+- name: "enhancement"
+  color: "a2eeef"
+  description: "New feature or improvement"
+
+- name: "bug"
+  color: "d73a4a"
+  description: "Something isn't working"
+
+- name: "documentation"
+  color: "0075ca"
+  description: "Documentation improvements"