Overview
Explore essential strategies for securing open source projects before release in this 37-minute OWASP Foundation talk. Learn about establishing open source governance processes, conducting code reviews, implementing supporting infrastructure, and addressing security concerns. Discover best practices for project security, hosting community projects, and transferring ownership. Gain valuable insights into the journey of open source development, from initial governance to pre-release reviews, and understand the key actions to take to ensure the safety and integrity of your open source contributions.
Syllabus
Intro
Your Two Main Concerns
The Journey
Establish Your Open Source Governance Process
Open Source Governance
Open Source Security
Code Review
Supporting Infrastructure
Recap
PreRelease Review
Project Security
Congratulations
The Basics
Security Issues
Tech Changes
Hosting Community Projects
Transferring Ownership
Actions to Take
Summary
Taught by
OWASP Foundation