Marta Rybczynska
Marta Rybczynska has a network security background, with 20 years of experience in Open Source.
She has worked with embedded operating systems like Linux and various real-time OSes, and with
system libraries and frameworks up to user interfaces. She has been involved in various Open Source
projects, and is currently co-maintaining the meta-security layer and a member of the Yocto Project Security Team and OpenEmbedded TSC. Marta has experience speaking at technical conferences, including Open Source Summit or FOSDEM.
Session
The cve-check class allows to find out which packages in your Yocto Project build have unfixed vulnerabilities. In the recent months, Marta and the team has worked on a replacement called currently yocto-vex-check. In this talk she will share experiences from this experiment and explore how the Yocto Project could address the problem in the years ahead, taking into account the new legal requirements (CRA-Cyber Resilience Act) and the ongoing issues with the CVE program.