YoVDO

Scaling the Security Researcher to Eliminate OSS Vulnerabilities - Automated Solutions

Offered By: Linux Foundation via YouTube

Tags

GitHub Courses Vulnerability Scanning Courses Security Automation Courses CodeQL Courses OpenRewrite Courses

Course Description

Overview

Save Big on Coursera Plus. 7,000+ courses at $160 off. Limited Time Only!
Explore a highly scalable approach to eliminating open-source software vulnerabilities in this 52-minute conference talk by Jonathan Leitschuh from the Open Source Security Foundation/Linux Foundation. Learn about the challenges of finding and fixing simple yet widespread security issues across hundreds of thousands of OSS projects. Discover how tools like GitHub's CodeQL and OpenRewrite can be leveraged to automate vulnerability scanning, triaging, reporting, and fixing at scale. Gain insights into the practical applications of automated bulk pull request generation for real-world OSS projects, and understand how this technique can efficiently utilize researcher knowledge to address vulnerabilities across the open-source ecosystem. Delve into the potential of this approach to not only identify security issues but also provide actionable solutions to volunteer OSS maintainers, ultimately working towards eliminating vulnerabilities once and for all.

Syllabus

Scaling the Security Researcher to Eliminate OSS Vulnerabilities Once and for...- Jonathan Leitschuh


Taught by

Linux Foundation

Tags

Related Courses

CodeQL Roundtable: Leveraging Static Analysis for Bug Bounties
Bugcrowd via YouTube
Discover Vulnerabilities with CodeQL
HackerOne via YouTube
Event-based Fuzzing, Patch-based Research, and Comment Police - Finding Bugs Through a Bug
Black Hat via YouTube
Protect Your Code with GitHub Security Features
GOTO Conferences via YouTube
Security as Code - A DevSecOps Approach
NDC Conferences via YouTube