Overview
Syllabus
intro
preamble
background - melissa mckay
jfrog & nginx series
security through obfuscation
moveit transfer vulnerability progress
owasp joke essay
coding safely: developer education
software dependencies
synopsis 2023 ossra report cyrc findings from 2022
supply-chain levels for software artifacts
dependency confusion attack - package mining
managing open source dependencies
the left-pad incident
container development
is there any hope???
what else can we do?
owasp resources cheat sheets
openssf trio of free courses
what can we do???
questions?
Taught by
Conf42