Die Øredev Developer Conference findet jährlich in Malmö (Schweden) statt und ist eine der größten Konferenzen für Entwickler:innen in Skandinavien. Die Konferenz bietet mehrere Tracks, die Themen wie Softwareentwicklung, Daten, KI-Sicherheit, neue Technologien und andere abdecken.
Unser Kollege Christoph Menzel ist am 7. November mit seinem Talk „Safely through the dependency minefield using OWASP Dependency Track“ dabei.
Abstract:
Fortunately, security in software development is becoming more and more of a central issue. But with increasing complexity of our software and attacks on it, it is getting more important to keep an eye on all dependencies. The OWASP Dependency-Track tool offers a simple and effective solution for exactly this. In this talk I will show you the benefits of Dependency-Track and you will learn how to use it to identify and avoid risks as well as how easy it is to integrate it into your build pipeline. Another important aspect is the monitoring of the used open source licenses, because here too it is easy to fall into one or two license traps.