Find and Track the Hidden Vulnerabilities Inside Your Dependencies

Discover how to identify and monitor hidden vulnerabilities in your application dependencies in this 31-minute conference talk. Learn about vulnerability indexing methods (NVD, CVE) and severity scoring systems (CVSS). Explore the process of creating a Continuous Security pipeline using Jenkins and OWASP DependencyCheck to detect vulnerabilities, and track them with OWASP DependencyTrack. Gain insights into the DevSecOps philosophy and take the first step towards securing your applications against critical vulnerabilities in open source components. Presented by Julien Topçu, Senior Lead Developer at Société Générale and OWASP foundation member, this talk emphasizes the importance of addressing security concerns in software development.

Find and Track the hidden vulnerabilities inside your dependencies by Julien Topçu