Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

NDC Conferences

Assessing NuGet Packages with Security Scorecards

NDC Conferences via YouTube

Overview

Explore the critical topic of assessing NuGet packages for security risks in this 54-minute conference talk from NDC Security in Oslo. Learn about the importance of evaluating third-party code, which often comprises up to 80% of modern applications. Discover how OpenSSF Scorecards can provide a "nutrition label" for software packages, helping developers make informed decisions about their dependencies. Examine various aspects of package security, including maintenance practices, build workflows, and the use of security tools. Delve into additional considerations specific to NuGet packages, such as reproducibility, .NET API usage, and code security reviews. Gain valuable insights to improve your ability to assess the security posture of NuGet packages and enhance your overall application security.

Syllabus

Assessing NuGet Packages more easily with Security Scorecards - Niels Tanis

Taught by

NDC Conferences

Reviews

Start your review of Assessing NuGet Packages with Security Scorecards

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.