{"guid":"ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","title":"Security in open source projects","subtitle":null,"slug":"froscon2019-2361-security_in_open_source_projects","link":"https://programm.froscon.de/2019/events/2361.html","description":"In recent years, the amount of open source components used by developers has experienced significant growth. Millions of open source libraries are distributed through centralized systems such as Maven Central (Java), NPM (JavaScript) and GitHub (Go).\n\nIn this talk, I will present the common security problems faced by companies that use open source. We will also talk about how to manage the risks of open source software using people, processes and tools","original_language":"eng","persons":["Jose Manuel Ortega"],"tags":["froscon2019","2361","Security"],"view_count":96,"promoted":false,"date":"2019-08-11T00:00:00.000+02:00","release_date":"2019-08-11T02:00:00.000+02:00","updated_at":"2024-07-04T20:00:02.091+02:00","length":3042,"duration":3042,"thumb_url":"https://static.media.ccc.de/media/events/froscon/2019/2361-hd.jpg","poster_url":"https://static.media.ccc.de/media/events/froscon/2019/2361-hd_preview.jpg","timeline_url":"https://static.media.ccc.de/media/events/froscon/2019/2361-hd.timeline.jpg","thumbnails_url":"https://static.media.ccc.de/media/events/froscon/2019/2361-hd.thumbnails.vtt","frontend_link":"https://media.ccc.de/v/froscon2019-2361-security_in_open_source_projects","url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_title":"FrOSCon 2019","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019","related":[{"event_id":2078,"event_guid":"7156e245-d372-44d9-af0f-cbaa2e089f2c","weight":1},{"event_id":3501,"event_guid":"cec35be5-a1f0-496b-82c9-c7ace338b50e","weight":1},{"event_id":4606,"event_guid":"5400c892-12e3-4199-b976-a68b0b54c159","weight":1},{"event_id":4935,"event_guid":"947f946e-3dd9-4911-b4de-f9bbd87058ee","weight":1},{"event_id":5766,"event_guid":"73f1dcb2-25ba-48ff-a02a-3abc33360f03","weight":1},{"event_id":6233,"event_guid":"9fa9eae0-2d2f-4bce-a7f5-1983003b3db7","weight":1},{"event_id":6461,"event_guid":"f42631ca-d3ec-5baf-8642-85c0b1cadc89","weight":1},{"event_id":6540,"event_guid":"0a1a58a4-7700-502b-b8f2-405f3e42c1bc","weight":1},{"event_id":6555,"event_guid":"208a0d4d-bd15-5795-82aa-563e270001d5","weight":1},{"event_id":7255,"event_guid":"265fd581-ed2b-5985-879c-0d51c45c70c8","weight":1},{"event_id":7268,"event_guid":"7007a0ab-a90c-4c5a-8ff2-e9faa6eba646","weight":2},{"event_id":7269,"event_guid":"313f600d-7418-4821-99fd-3d788de500ae","weight":1},{"event_id":7270,"event_guid":"2a276b5d-b77c-4074-a741-8651e93418f8","weight":1},{"event_id":7274,"event_guid":"f8665fe1-8ffa-4ec0-8924-17933c87ebcf","weight":4},{"event_id":7279,"event_guid":"967fa2a1-265f-47c1-90b2-ec8dba08b328","weight":4},{"event_id":7280,"event_guid":"b8a483e8-02bb-4382-8697-b023c1de1cd3","weight":1},{"event_id":7281,"event_guid":"bb5b04bd-9599-4d93-bd12-c779f381cf5e","weight":3},{"event_id":7282,"event_guid":"42a1e544-fae1-439c-95c0-d47d4fa94758","weight":4},{"event_id":7285,"event_guid":"71c15227-527d-40e4-96c0-e04e2b218422","weight":1},{"event_id":7286,"event_guid":"a2f61e35-bf54-4cf9-9362-e4d04fa94915","weight":3},{"event_id":7292,"event_guid":"b3ebf68d-8a2a-4564-ab24-e013dc92ba1c","weight":1},{"event_id":7296,"event_guid":"b8424140-1639-44f7-a19a-67af58ad61e9","weight":3},{"event_id":7297,"event_guid":"e3cbd7a8-c747-42e3-93c3-990adb6d6c0e","weight":1},{"event_id":7299,"event_guid":"a7a44ab0-fc03-40f6-bbd3-fd556c5f2d52","weight":1},{"event_id":7306,"event_guid":"0ae9a2c9-5c51-4feb-a945-bd4f94481f14","weight":1},{"event_id":7311,"event_guid":"fbac57d8-37e3-4c5e-a97f-44e9019b6ca7","weight":1},{"event_id":7313,"event_guid":"7327aca1-14dd-4314-90f5-89546a1354b4","weight":4},{"event_id":7317,"event_guid":"353bc7bc-3033-4350-88ff-f753f72e683e","weight":4},{"event_id":7318,"event_guid":"f36a5187-0a6b-40f2-a695-2f3585f2b6f6","weight":5},{"event_id":7319,"event_guid":"d652dc05-fd17-4972-aaa3-5f678b2f7475","weight":5},{"event_id":7327,"event_guid":"c4462ba0-f3b2-45c6-aca5-5ef5da2e55db","weight":4},{"event_id":7329,"event_guid":"9186fc88-b1f8-45fc-8dcb-a375e029680d","weight":1},{"event_id":7331,"event_guid":"74057cdb-d705-4603-b56c-f15383df0747","weight":3},{"event_id":7332,"event_guid":"50ad5991-1b2f-4a92-ba87-dec6456f085a","weight":8},{"event_id":7333,"event_guid":"9f669988-d2f1-451f-9de1-b415a10e22b9","weight":1},{"event_id":7334,"event_guid":"4bd45e4a-c05c-4804-b879-4b793b7fca4e","weight":2},{"event_id":7341,"event_guid":"7100ad0c-e4f3-4784-b707-46759cd3cb6a","weight":6},{"event_id":7342,"event_guid":"88474e85-c77c-466e-9351-d306b620f495","weight":4},{"event_id":7343,"event_guid":"212468fa-72ee-4d11-a32e-56d5e6fd78a3","weight":7},{"event_id":7353,"event_guid":"84aca65d-603a-4fc1-844e-061cdeb14f71","weight":1},{"event_id":7354,"event_guid":"fe017cb4-5ec9-47a7-be7a-6eef09e06581","weight":4},{"event_id":7355,"event_guid":"a160f9d4-663b-4237-b56a-20d065ade180","weight":4},{"event_id":7357,"event_guid":"38775ee6-c151-4cc6-974c-4d121f95b159","weight":3}],"recordings":[{"size":161,"length":3042,"mime_type":"video/mp4","language":"eng","filename":"froscon2019-2361-eng-Security_in_open_source_projects_hd.mp4","state":"new","folder":"h264-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2019-08-11T19:03:11.858+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2019/h264-hd/froscon2019-2361-eng-Security_in_open_source_projects_hd.mp4","url":"https://api.media.ccc.de/public/recordings/36998","event_url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019"},{"size":33,"length":3042,"mime_type":"audio/opus","language":"eng","filename":"froscon2019-2361-eng-Security_in_open_source_projects_opus.opus","state":"new","folder":"opus","high_quality":false,"width":0,"height":0,"updated_at":"2019-08-11T19:05:04.358+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2019/opus/froscon2019-2361-eng-Security_in_open_source_projects_opus.opus","url":"https://api.media.ccc.de/public/recordings/37004","event_url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019"},{"size":46,"length":3042,"mime_type":"audio/mpeg","language":"eng","filename":"froscon2019-2361-eng-Security_in_open_source_projects_mp3.mp3","state":"new","folder":"mp3","high_quality":false,"width":0,"height":0,"updated_at":"2019-08-11T19:13:34.143+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2019/mp3/froscon2019-2361-eng-Security_in_open_source_projects_mp3.mp3","url":"https://api.media.ccc.de/public/recordings/37009","event_url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019"},{"size":81,"length":3042,"mime_type":"video/mp4","language":"eng","filename":"froscon2019-2361-eng-Security_in_open_source_projects_sd.mp4","state":"new","folder":"h264-sd","high_quality":false,"width":720,"height":576,"updated_at":"2019-08-11T19:59:37.174+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2019/h264-sd/froscon2019-2361-eng-Security_in_open_source_projects_sd.mp4","url":"https://api.media.ccc.de/public/recordings/37036","event_url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019"},{"size":308,"length":3042,"mime_type":"video/webm","language":"eng","filename":"froscon2019-2361-eng-Security_in_open_source_projects_webm-hd.webm","state":"new","folder":"webm-hd","high_quality":true,"width":1920,"height":1080,"updated_at":"2019-08-11T20:00:11.889+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2019/webm-hd/froscon2019-2361-eng-Security_in_open_source_projects_webm-hd.webm","url":"https://api.media.ccc.de/public/recordings/37037","event_url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019"},{"size":122,"length":3042,"mime_type":"video/webm","language":"eng","filename":"froscon2019-2361-eng-Security_in_open_source_projects_webm-sd.webm","state":"new","folder":"webm-sd","high_quality":false,"width":720,"height":576,"updated_at":"2019-08-11T20:01:08.322+02:00","recording_url":"https://cdn.media.ccc.de/events/froscon/2019/webm-sd/froscon2019-2361-eng-Security_in_open_source_projects_webm-sd.webm","url":"https://api.media.ccc.de/public/recordings/37039","event_url":"https://api.media.ccc.de/public/events/ab1cb567-0f2a-49d8-ab5d-f5a4491c1fb3","conference_url":"https://api.media.ccc.de/public/conferences/froscon2019"}]}