Why Do We Keep Ignoring CI Security With François Proulx Open Source Security podcast

Artwork

Open Source Software Development Security Josh Bressers Tech Cybersecurity Open Opensource Source Open Source Security

Konten disediakan oleh Open Source Security and Josh Bressers. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Open Source Security and Josh Bressers atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.

Open Source Security « »
Why do we keep ignoring CI security with François Proulx

10M ago 23:38

Bagikan

MP3•Beranda episode

Konten disediakan oleh Open Source Security and Josh Bressers. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Open Source Security and Josh Bressers atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.

François Proulx, a supply chain security researcher at Boost Security, discusses how continuous integration (CI) and build pipeline security represents a critical and overlooked hole in our supply chain security. It seems like most supply chain compromises are actually from CI system breaches rather than direct code compromise, yet we seem to obsess over everything on either side of the CI system. François has a bunch of really good practical suggestions for how we can start to improve our CI security today.

The blog post for this episode can be found at https://opensourcesecurity.io/2025/2025-02-ignoring_ci_security_francois_proulx/

… continue reading

506 episode

#Open Source #Software Development #Security #Josh Bressers #Tech #Cybersecurity #Open #Opensource #Source #Open Source Security

Artwork

Why do we keep ignoring CI security with François Proulx

Open Source Security

277 subscribers

published 10M ago

Bagikan

MP3•Beranda episode

Konten disediakan oleh Open Source Security and Josh Bressers. Semua konten podcast termasuk episode, grafik, dan deskripsi podcast diunggah dan disediakan langsung oleh Open Source Security and Josh Bressers atau mitra platform podcast mereka. Jika Anda yakin seseorang menggunakan karya berhak cipta Anda tanpa izin, Anda dapat mengikuti proses yang diuraikan di sini https://id.player.fm/legal.

François Proulx, a supply chain security researcher at Boost Security, discusses how continuous integration (CI) and build pipeline security represents a critical and overlooked hole in our supply chain security. It seems like most supply chain compromises are actually from CI system breaches rather than direct code compromise, yet we seem to obsess over everything on either side of the CI system. François has a bunch of really good practical suggestions for how we can start to improve our CI security today.

The blog post for this episode can be found at https://opensourcesecurity.io/2025/2025-02-ignoring_ci_security_francois_proulx/

… continue reading

506 episode

#Open Source #Software Development #Security #Josh Bressers #Tech #Cybersecurity #Open #Opensource #Source #Open Source Security

All episodes

×

Selamat datang di Player FM!

Player FM memindai web untuk mencari podcast berkualitas tinggi untuk Anda nikmati saat ini. Ini adalah aplikasi podcast terbaik dan bekerja untuk Android, iPhone, dan web. Daftar untuk menyinkronkan langganan di seluruh perangkat.

Dengarkan 500+ topik

Panduan Referensi Cepat

Podcast Teratas

Digipreneur Podcast - Digital Marketing, Startup, Teknologi, dan Bisnis Online di Indonesia

Podcast Awal Minggu

Dummy Podcast Indonesia

Rasarab - Indonesia

Indonesian News - NHK WORLD RADIO JAPAN

Asumsi Bersuara

Sains Sekitar Kita

TemuKonco Podcast

Bantuan/FAQ | Tingkatkan | Mengiklankan

Seni|Bisnis|Komedi|Ekonomi|Hiburan|Berita|Politik|Agama

Ilmu Pengetahuan|Sepak Bola|Olah raga|Cerita|Teknologi|Kejahatan

Hak Cipta 2025 | Kebijakan Privasi | Ketentuan Layanan | | hak cipta

Dengarkan acara ini sambil menjelajah