Recorded October 14, 2020
Following DevSecOps means approaching security as an ongoing part of software development—and staying up to date on the code your software depends on.
Join Mikail Tunç, Principal AppSec Engineer at Mettle, and Maya Kaczorowski, GitHub Product Manager for an in-depth conversation into how Mettle uses GitHub’s application security capabilities to understand which dependencies they use, their vulnerabilities, how to patch them—and get back to work.
In this talk, we’ll cover:
- What a software supply chain is and how to secure yours
- How to identify, manage, and update your dependencies using Dependabot and GitHub’s dependency graph
- How to report open source vulnerabilities and why
Principal AppSec Engineer, Mettle
Product Manager, Supply Chain Security, GitHub
See all webcasts →