2024-12-07 –, Track 1
It's actually pretty easy to find and fix vulnerabilities within open-source projects. With the right tools and techniques, identifying security flaws and patching them can be a straightforward process.
In this talk, we’ll explore practical methods to detect vulnerabilities, from automated scanning to manual code review, and guide you through the steps to address them effectively.
Whether you’re a seasoned developer or new to open source, you’ll learn how to contribute to making projects more secure.
Let's commit to securing open-source code—starting today, with your next pull request!
In this talk, I will provide a brief but comprehensive introduction on how to find and fix vulnerabilities in open-source projects.
We'll explore not only the techniques for identifying and addressing security flaws but also how anyone—regardless of experience—can contribute to improving open-source software.
Whether you're scanning for vulnerabilities, submitting patches, or helping with code reviews, you'll discover practical ways to get involved and make a meaningful impact in the open-source community.
I'm Callian, also known as Kallie, a dedicated DevSecOps Engineer with a development background and are passionate about application security.
My journey is fueled by an enduring curiosity and a passion for embracing new challenges that foster both personal and professional growth.
As the leader of the DevSecCon Cape Town Community, I assist in bringing together developers, operations teams, and security practitioners to collaborate, share knowledge, and shape the future of secure development