Observability

Presenters Madalin Neag Source OpenSource SecurityCon 2026 Navigating the Global Compliance Maze: How OpenSSF OSPO’s Baseline Simplifies Security for Open Source 🌐🛡️ The world of open source software is a vibrant, collaborative engine powering critical infrastructure across the globe. From finance and healthcare to transportation and energy, open source projects are the unsung heroes. But as these projects grow in importance, so does the scrutiny they face, particularly regarding security and compliance. Madalin Neag, an EU Policy Advisor at OpenSSF, sheds light on the increasingly complex regulatory landscape and introduces a powerful solution: the OpenSSF OSPO’s Baseline. ...

Presenters Thijs Ebbers Tadeo Sanchez Source OpenSource SecurityCon 2026 🛡️ Beyond Zero Trust: How ING Achieves Zero Breaches with Zero Privilege Architecture Imagine a world where production environments run autonomously, human error is designed out of the system, and security breaches simply don’t happen. For the team at ING, this isn’t a pipe dream—it is their daily reality. In a recent deep dive, Thijs Ebbers (Architect) and Tadeo Sanchez (Lead Engineer) shared the secrets behind their container hosting platform’s success. The numbers speak for themselves: zero security breaches and 100% uptime. 🚀 ...

Presenters Andrew McNamara Adolfo García Veytia Source OpenSource SecurityCon 2026 Level Up Your Software Supply Chain: Policy Engines for Attestations and Provenance 🚀 Hey tech enthusiasts! 👋 Ever feel like generating software attestations and provenance is the easy part, but actually using that valuable data feels like a black box? You’re not alone! Andrew McNamara from Red Hat and Adolfo García Veytia (aka “puerco”) from the Kubernetes release engineering team are here to demystify this crucial step. They’re showcasing how policy engines can transform your attestations and provenance into actionable, automated decisions for a more secure software supply chain. ...

Presenters Ram Iyengar Source OpenSource SecurityCon 2026 Strengthening Open Source Security: A Look at OpenSearch’s Journey 🚀 Hey tech enthusiasts! 👋 It’s your favorite blogger here, diving deep into the crucial world of open source security. Today, we’re dissecting the efforts of a prominent project, OpenSearch, and exploring how we can all contribute to a more secure digital ecosystem. The “Finger in the Dike” Analogy: A Developer’s Reality 🤏 We’ve all heard the classic tale of the little boy with his finger in the dike, preventing a flood. In the open source world, many developers find themselves in a similar, albeit digital, predicament. They’re often the first line of defense, patching vulnerabilities and ensuring the stability of projects while juggling feature development and community demands. This constant “plugging the holes” can be exhausting and, frankly, unsustainable. ...

Presenters Gerald Combs Source OpenSource SecurityCon 2026 The Magic of Open Source: Building Communities That Matter ✨ Hey tech enthusiasts! 👋 Ever wondered what makes open-source projects like Wireshark and Falco tick? Gerald Combs, the brilliant mind behind Wireshark and a key contributor to Falco, recently shared some incredible insights into nurturing these vital communities. It’s not just about code; it’s about people, purpose, and progress. Let’s dive into what makes these projects, and by extension, the systems they power, so robust and reliable. ...