FinOps

Presenters Atulpriya Sharma Source OpenSource SecurityCon 2026 Your Most Privileged User Isn’t Human: Securing AI Agents in Production 🤖💡 Ever wonder who’s the most powerful entity in your system today? It’s probably not a human. It’s your AI agent. And while these autonomous digital workers are revolutionizing how we operate, they’re also creating gaps in our security postures that we urgently need to address. Atulpriya Sharma, a Senior Developer Advocate at Improving (formerly InfraCloud), CNCF Ambassador, and co-chair of KubeCon India 2025, recently shed light on this critical challenge. He compellingly argued that our existing security paradigms, built for humans, are simply not ready for the unique nature of AI agents. ...

Presenters Kevin Conner Firas Ghanmi Source OpenSource SecurityCon 2026 Quantum-Proofing Sigstore: Three Bold Approaches to Secure Our Software Supply Chain 🚀 The digital world runs on trust, and in the realm of software, that trust increasingly relies on robust supply chain security. Sigstore stands as a critical pillar, ensuring the integrity and authenticity of software artifacts. But what happens when the very foundations of our cryptographic security are threatened? Enter quantum computing – a game-changer that could render today’s most secure algorithms obsolete. ...

Presenters Madalin Neag Source OpenSource SecurityCon 2026 Navigating the Global Compliance Maze: How OpenSSF OSPO’s Baseline Simplifies Security for Open Source 🌐🛡️ The world of open source software is a vibrant, collaborative engine powering critical infrastructure across the globe. From finance and healthcare to transportation and energy, open source projects are the unsung heroes. But as these projects grow in importance, so does the scrutiny they face, particularly regarding security and compliance. Madalin Neag, an EU Policy Advisor at OpenSSF, sheds light on the increasingly complex regulatory landscape and introduces a powerful solution: the OpenSSF OSPO’s Baseline. ...

Presenters Thijs Ebbers Tadeo Sanchez Source OpenSource SecurityCon 2026 🛡️ Beyond Zero Trust: How ING Achieves Zero Breaches with Zero Privilege Architecture Imagine a world where production environments run autonomously, human error is designed out of the system, and security breaches simply don’t happen. For the team at ING, this isn’t a pipe dream—it is their daily reality. In a recent deep dive, Thijs Ebbers (Architect) and Tadeo Sanchez (Lead Engineer) shared the secrets behind their container hosting platform’s success. The numbers speak for themselves: zero security breaches and 100% uptime. 🚀 ...

Presenters Marina Moore Alex Zenla Source OpenSource SecurityCon 2026 The Unseen Dangers in Open Source: A Deep Dive into a Critical Tar Bug 🐛💻 Hey tech enthusiasts! 👋 Ever wonder what lurks beneath the surface of the open-source software you use every day? Today, we’re diving deep into a fascinating, albeit slightly terrifying, bug that Marina Moore (Head of Research at Ada) and Alex Zenla (CTO of Ada) stumbled upon. This isn’t just about a single bug; it’s a journey into the intricate world of software supply chain security, the complexities of open-source ecosystems, and the often-overlooked responsibilities of project maintainers. 🚀 ...