← Volver a NERDflix

How GitHub secures open source

Protagonista: Joseph Katsioloudes
Año: 2025
País: España
Género: Terror
Track: Security
Idioma: Inglés

Uncover valuable insights into how GitHub secures the open-source software we all depend on, with real-world examples from the GitHub Security Lab, which uncovered 1,000+ vulnerabilities and was credited with 800+ CVEs over the past 4 years. Securing open-source software is critical because it underpins much of today’s digital infrastructure, and vulnerabilities in widely used components can create significant risks across entire software ecosystems. This session will provide the latest updates on how GitHub enhances various elements of the Secure Software Development Life Cycle (SSDLC), leveraging the driving forces of Artificial Intelligence (AI), Developer Experience (DevEx), and community collaboration to secure open source. We will explore best practices in software security, including code scanning, secrets hygiene, dependency management, automation, and enhancing security awareness through gamification. The audience will gain a deep understanding of industry-leading initiatives and lessons learned from our experience in today's rapidly changing landscape.

security cyber-security open-source artificial-intelligence developer-experience

Sobre Joseph Katsioloudes

Joseph Katsioloudes

Leading Cyber Security Specialist, GitHub Security Lab

Joseph is a security specialist who empowers developers to ship secure software through his research and education work at the GitHub Security Lab. His recent contributions include video content with combined 1.2 million views packed with practical security tips, and the free game gh.io/securecodegame for software developers who want to build a security skillset with 10,000 players worldwide in the first year. As the speaker of 62 talks in 25 countries in the past 3.5 years, he captivates audiences with his insights and dynamic presentation style.

𝕏 Twitter LinkedIn