Adventures in Securing an Open Source Project - From Zero to Hero

Explore the journey of securing an open source project in this 43-minute conference talk by Kara Olive and Pedro Nacht from Google. Learn about the increasing attacks on open source projects and discover free tools and techniques to protect your work. Follow along as the speakers create a project with poor security practices, score it using the OpenSSF Scorecard tool, and then systematically improve its security to reach the top 1% of rated projects. Gain valuable insights on getting started with securing open source projects, choosing high-impact improvements, and mitigating common vulnerabilities. Benefit from practical advice and examples tailored for beginners in open source development, focusing on freely available tools to enhance your project's security posture.