Session: Security Posture Assessment and Improvements for Open Source Projects
Security is an essential topic for anyone working in the open source space. Proper security helps prevent bugs and vulnerabilities, and allows the software to run faster and function as intended. Knowing your security posture is vital to making the right decision in securing the project. Do you know how open source projects keep the security intact? In this talk, we will discuss how practices like fuzzing, SBOM, security audit, and SSDLC are leveraged by the open source community to keep open source projects highly secured. We will also cover the assessment of security vulnerabilities and inventory through actual examples of large-scale open source projects.
Presenters:
This track proudly sponsored by