Overview
Explore the evolving landscape of open source vulnerability management in this insightful conference talk from OWASP Global AppSec Tel Aviv. Delve into the findings of the State of Open Source Vulnerability Management Report, which surveyed over 650 developers and analyzed data from various security sources. Gain valuable insights into the challenges faced by development teams in addressing the rapid increase of open source vulnerabilities. Learn about best practices for managing open source security and compliance issues, including effective vulnerability prioritization, smart selection techniques, and the implementation of continuous security in CI/CD pipelines. Discover strategies to overcome friction between teams and adopt a mindset shift towards proactive vulnerability management. Understand the current state of the industry and equip yourself with knowledge to navigate the future of open source security.
Syllabus
Introduction
Opensource vulnerabilities are on the rise
Developers are relying on opensource
How much time do developers perform remediation
Friction between teams
Mindset shift
Effective vulnerabilities
Prioritize vulnerabilities
Smart selection
Continuous security
CICD
Deployment
Taught by
OWASP Foundation