OpenSource SecurityCon NA 2025

Presenters Christopher Robinson Jennifer Power Ben Cotton Stephen Augustus Evan Anderson Source OpenSource SecurityCon NA 2025 Level Up Your Open Source Security: The OpenSSF Security Baseline Explained 🚀 Ever felt like you’re drowning in security checklists and constant requests for information from downstream users? You’re not alone! The world of open-source development is fantastic, but keeping up with security demands can feel like a monumental task. That’s where the OpenSSF Security Baseline comes in, offering a clear, accessible path to fortify your projects and reduce that ever-present burden. ...

Presenters Adolfo García Veytia Source OpenSource SecurityCon NA 2025 Building Trust, Byte by Byte: A Deep Dive into Salsa and the Ample Policy Engine 🚀 Hey tech enthusiasts! Ever felt that nagging doubt about the security of the software you use, or the code you build? In today’s interconnected digital world, the integrity of our software supply chains is paramount. That’s why the recent talk by Alo Garcia of Carabiner Systems at our latest conference was a breath of fresh air, diving deep into Salsa, a powerful security framework for software supply chains, and showcasing how the Ample policy engine makes it all come together. ...

Presenters Adolfo Garcia Jun (Victor) Lu Source OpenSource SecurityCon NA 2025 Securing the Future: Building Trust in AI with SBOMs and Model Signing 🛡️✨ The AI revolution is here, and with it comes an exciting wave of innovation. But as we harness the power of artificial intelligence, a critical question arises: how do we ensure it’s secure and trustworthy? That’s precisely the challenge the tech world is tackling head-on, and at a recent conference, the conversation around AI governance and security took center stage. Get ready, because we’re diving deep into how we can build a more secure AI future, one component at a time! 🚀 ...

Presenters Jack Cable Source OpenSource SecurityCon NA 2025 Securing the Digital Foundation: How Policy and AI are Reshaping Open Source Security 🚀 Hey tech enthusiasts! Ever stopped to think about the invisible scaffolding that holds up so much of our digital world? That’s right, we’re talking about open-source software (OSS). And as the digital landscape evolves at lightning speed, so too must our approach to securing this vital foundation. Jack Cable, co-founder and CEO of Corridor, recently shared some fascinating insights on how government policy and the rise of AI are dramatically changing the game for OSS security. Let’s dive in! 🌊 ...

Presenters Billy Lynch Source OpenSource SecurityCon NA 2025 Long Live Secrets? Let’s Talk Short-Lived Credentials for a More Secure Software Supply Chain! 🚀 Hey tech enthusiasts! Ever felt like managing secrets in your software supply chain is a bit like juggling chainsaws? You want to keep things secure, but sometimes the established practices feel… well, a little less than ideal. That’s exactly the sentiment Billy Lynch, a Software Engineer at Chainbound, shared at a recent tech conference, and it’s a topic that deserves our attention. ...