Discover how to identify and monitor hidden vulnerabilities in your application dependencies in this 31-minute conference talk. Learn about vulnerability indexing methods (NVD, CVE) and severity scoring systems (CVSS). Explore the process of creating a Continuous Security pipeline using Jenkins and OWASP DependencyCheck to detect vulnerabilities, and track them with OWASP DependencyTrack. Gain insights into the DevSecOps philosophy and take the first step towards securing your applications against critical vulnerabilities in open source components. Presented by Julien Topçu, Senior Lead Developer at Société Générale and OWASP foundation member, this talk emphasizes the importance of addressing security concerns in software development.
Find and Track the Hidden Vulnerabilities Inside Your Dependencies
Overview
Syllabus
Find and Track the hidden vulnerabilities inside your dependencies by Julien Topçu
Taught by
Devoxx
Related Courses
-
Find and Track the Hidden Vulnerabilities Inside Your Dependencies
-
DevSecOps Fundamentals
-
StrangerDanger - Finding Security Vulnerabilities Before They Find You
-
Securing Your Dependencies
-
Stranger Danger - Finding Security Vulnerabilities Before They Find You
-
Hunting Down the Monsters Hidden in Your Software Supply Chain
