Recorded August 20, 2020
Software supply chain threats are real. As more developers and companies rely on open-source code – that anyone can contribute to, including attackers – this opens the door to a new vector of attack.
With GitHub’s Inside Solutions Engineer Andre Kolodochka we will cover:
- What’s actually happening in the wild, how do you determine your dependencies, and properly secure yourself?
- Best practice security hygiene: scanning for secrets in code
- What you can do to contribute back – how to report vulnerabilities discovered in open source
- What security reporting should look like, and steps you can take today to increase security and trust
You’ll come away with a better understanding of what you can do for supply chain security for your organisation, the projects you depend on, and the projects you maintain.
Inside Solutions Engineer, GitHub
See all webcasts →