Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

Linux Foundation

Scaling the Security Researcher to Eliminate OSS Vulnerabilities - Automated Solutions

Linux Foundation via YouTube

Overview

Explore a highly scalable approach to eliminating open-source software vulnerabilities in this 52-minute conference talk by Jonathan Leitschuh from the Open Source Security Foundation/Linux Foundation. Learn about the challenges of finding and fixing simple yet widespread security issues across hundreds of thousands of OSS projects. Discover how tools like GitHub's CodeQL and OpenRewrite can be leveraged to automate vulnerability scanning, triaging, reporting, and fixing at scale. Gain insights into the practical applications of automated bulk pull request generation for real-world OSS projects, and understand how this technique can efficiently utilize researcher knowledge to address vulnerabilities across the open-source ecosystem. Delve into the potential of this approach to not only identify security issues but also provide actionable solutions to volunteer OSS maintainers, ultimately working towards eliminating vulnerabilities once and for all.

Syllabus

Scaling the Security Researcher to Eliminate OSS Vulnerabilities Once and for...- Jonathan Leitschuh

Taught by

Linux Foundation

Reviews

Start your review of Scaling the Security Researcher to Eliminate OSS Vulnerabilities - Automated Solutions

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Someone learning on their laptop while sitting on the floor.