Name: Exploring Some Essential Security Checks for Any Open Source Go Project - Cosmin Cojocar, Google
Start: 2024-09-19T15:20:00+0200
End: 2024-09-19T15:40:00+0200

19 September 2024
Learn More and Register to Attend

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for SOSS Community Day Europe 2024 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

Please note: This schedule is automatically displayed in Central Europe Summer Time (CEST). To see the schedule in your preferred timezone, please select from the drop-down located at the bottom of the menu to the right.

The schedule is subject to change.

Thursday September 19, 2024 15:20 - 15:40 CEST

Room 3.16-3.17

Code security analysis, dependencies vulnerability scanning and supply chain security should be part of any open source Go project. In this talk, we will explore some open source tools such as gosec, govulncheck and sigstore/cosign which make it easy for any maintainer to enhance the security of her project. We will show real examples from gosec project where these tools are used to keep the security of the project at bay when constantly releasing new versions.

Speakers

Cosmin Cojocar

Senior Security Engineer, Google

Cosmin is a Senior Security Engineer at Google working on cloud security, before that he was with Adobe and Microsoft Azure. He is involved in open source software for almost two decades as a contributor and maintainer of several projects such as gosec (a static security analyser... Read More →

Thursday September 19, 2024 15:20 - 15:40 CEST
Room 3.16-3.17

Breakout Sessions

SOSS Community Day Europe 2024

Cosmin Cojocar

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!