Code on the Road: Software vulnerabilities and supply chain security at the Open Source Summit // TRAIN BRAIN

Code on the Road: Software vulnerabilities and supply chain security at the Open Source Summit

Join IBM Master Inventor Shripad Nadgowda and CISO Security Engineer Caroline Lee at the Open Source Summit in Austin, Texas, as they discuss software vulnerabilities and how to strengthen your cybersecurity posture. Including supply chain security and a demo for reviewing open source packages.
0:31 Supply chain
1:10 Example of malicious code impacts
1:59 Should we stop using open source?
3:13 SBOM and supply chain security
4:10 What is Project Gauge?
6:00 Demo of Project Gauge
#OpenSource #SupplyChain #Security
____________________________________________
Learn in-demand skills. Build with real code. Connect to a global development community: http://ibm.biz/IBMdeveloperYT
Subscribe to see more developer content → https://www.youtube.com/user/developerworks?sub_confirmation=1
Follow IBM Developer on social:
Twitter: https://twitter.com/IBMDeveloper
Facebook: https://www.facebook.com/IBMDeveloper/
LinkedIn: https://www.linkedin.com/showcase/ibmdeveloper
More from IBM Developer:
Community: https://developer.ibm.com/community/
Blog: https://developer.ibm.com/blogs/
Call for Code: https://developer.ibm.com/callforcode/
#IBMDeveloper
#Developer
#Coding

IBM Developer

Whatever your experience level, IBM Developer provides the best in open source tech, learning resources, and opportunities to connect with our expert Developer Advocates. Subscribe to this channel to be notified of our upcoming live streams and new on-dem...

What is Environmental Intelligence?

What are geospatial-temporal APIs?

IBM Environmental Intelligence: History on Demand

Build a Tool Calling Agent

How to implement LLM guardrails for RAG applications

Using Mistral Large 2 in IBM watsonx.ai flows engine

Confidential computing with IBM LinuxONE

IBM Cloud powered with IBM Z and IBM LinuxONE

Confidential computing for financial transactions using Hyper Protect Virtual Server for VPC

Wharf: Automatic porting of Go code to Unix

IBM MQ: Request-response variations

Using Meta Llama 3.1 in watsonx.ai flows engine

IBM Test Accelerator for Z

Issuing commands to query information about Z resources in Z ChatOps

Using Instana Observability on zOS to observe hybrid applications end to end

Using Z ChatOps to manage IBM Z System Automation resources

Using IBM Granite in IBM watsonx ai flows engine

Using different LLMs in watsonx.ai flows engine

Create a webpage summarization tool using watsonx.ai flows engine

Step by step: IBM MQ on Red Hat OpenShift and AWS

Build a RAG application in minutes

Introducing IBM MQ for z/OS 9.4

IBM MQ 9.4: Built for change

ADDI and Git support, part 2

ADDI and Git support, part 1

IBM Wazi as a Service overview

GitLab and IBM Z DevOps solutions: CICD pipeline

DevOps for IBM Z Hybrid Cloud

Introduction to IBM Developer for zOS Enterprise Edition

The CCDT, explained

Open Source Summit North America 2024: IBM talks open source software

COBOL and Java interoperability overview

AIOps on IBM Z: Integrated observability

AIOps on IBM Z: Anomaly resolution using log data

AIOps on IBM Z: Synchronizing resources with ServiceNow

JSON support in IBM Enterprise COBOL for zOS

Managing Microsoft Office 365 environment compliance with IBM Cloud Hyper Protect Crypto Services

Managing AWS S3 encryption keys using Hyper Protect Crypto Services with Unified Key Orchestrator

IBM Hyper Protect Offline Signing Orchestrator overview

Is your software supply chain secure?

2024 Call for Code Global Challenge Kickoff

Getting started with IBM Cloud Hyper Protect Crypto Services

Generative AI: Don't fear it — use it!

JJ Asghar takes a LEAP with generative AI

IBM for z/OS: Connecting IBM MQ with Apache Kafka

IBM MQ for z/OS: Physical storage

Request/Response Messaging: Ensuring seamless communication and confirmation

Publish/Subscribe Messaging: Stay connected with real-time updates

IBM MQ Point-to-Point Messaging Pattern: Efficient and reliable communication

IBM MQ Messaging Objects: A fun guide to the building blocks of messaging

Enterprise Messaging: Unlocking the power of communication for your business

Assured message delivery with IBM MQ NativeHA

Scalability via IBM MQ Uniform Clustering

Identifying Defects Using IBM Maximo Visual Inspection

Improving security on the AWS Cloud with IBM Security QRadar on AWS

Digital banking on the AWS Cloud using IBM Z

Assured message delivery with IBM MQ NativeHA

2022 Call for Code Team GardenMate

Identity and Access Management — Call for Code Tech Demo

App ID — Call for Code Tech Demo

Code on the Road: Build machine learning pipelines in JupyterLab using Elyra, without writing code

Cloud Functions — Call for Code Tech Demo

Cloudant — Call for Code Tech Demo

Code on the Road: Software vulnerabilities and supply chain security at the Open Source Summit

Optimize your IT investments and automate license compliance with Flexera One and IBM Turbonomic

IBM Code Cafe at Open Source Summit 2022

Demo of Sysdig Secure on IBM Cloud

Demo of IBM Cloud Monitoring with Sysdig

Secure applications with GitLab for IBM with demo

Smooth operations: a Sysdig and IBM partnership story

Balancing performance and licensing costs with IBM Turbonomic + Flexera One ITAM

Cloudera and IBM, CDP and Cloud Pak for data demo session

Cloudera and IBM better together

Getting started with AI in Node.js — IBM Developer