Security and Modern software development

This talk looks at supply chain security risks in the open source ecosystem, around things like repository security and examines some of the ways in which an attacker might be able to compromise a package to attack applications which use it.

It was delivered for OWASP Appsec EU in 2015, there’s a recording here and the slides are available here

© 2022. All rights reserved.