Loading…
Attending this event?
December 8, 2022 | New York, NY
Registration Information & View More Details

Please note all session times are listed in Eastern Standard Time (EST).
To view the schedule at your preferred time, please choose your location on the right-hand navigation panel under ’Timezone.’
The schedule is subject to change.
Back To Schedule
Thursday, December 8 • 11:55am - 12:25pm
From Builds & CI to Security Testing in a Single PR - Sarah Khalife, GitHub

Sign up or log in to save this to your schedule, view media, leave feedback and see who's attending!

Securing the app development lifecycle early on and incorporating security through a transparent and consistent process is key in building any production level applications. On a daily basis, how often do you build your application? Now think, how often do you scan for vulnerabilities in the code? This is mostly an afterthought, and is not always considered as the easy part of developing any applications. The recent vulnerability exploits reinforced the need for a secure development lifecycle. Simplifying and automating the process all in a single pull request makes it much easier for any app developer to add security in their pipeline. This talk will cover how to leverage available open source tooling to build and test an application, run security scans across it, and package it for shipping. The session will also provide a step-by-step demonstration on how to set it up all within a pull request and push the application to a production environment in a consistent manner.

Speakers
avatar for Sarah Khalife

Sarah Khalife

Enterprise Solutions Engineer, GitHub
Passionate about creating an environment to help organizations implement best practices and improve their Software Development Life Cycle operations, Sarah is a Solutions Engineer at GitHub. She helps drive open source and innersource, automated workflows, and more secure development... Read More →



Thursday December 8, 2022 11:55am - 12:25pm EST
HUB 2
  Hot Topics
Feedback form isn't open yet.