Open Source Developers Are Security’s New Front Line
Bad actors have recognised the power of open source and are now beginning to create their own attack opportunities. This new form of assault, where OSS project credentials are compromised and malicious code is intentionally injected into open source libraries, allows hackers to poison the well. In this session, Ilkka will explain how both security and developers must work together to stop this trend. Or, risk losing the entire open source ecosystem.
- Analyse, and detail, the events leading to today’s “all-out” attack on the OSS industry
- Define what the future of open source looks like in today’s new normal
- Outline how developers can step into the role of security, to protect themselves, and the millions of people depending on them

Ilkka Turunen
Global Director, Pre-Sales Engineering @Sonatype
Ilkka Turunen is the Global Director of Pre-sales Engineering at Sonatype. His background is in software and systems engineering, acting as an architect for several commercial projects. He's helped define everything from the software design to webscale infrastructure architectures and...
Read moreFind Ilkka Turunen at:
From the same track
Lessons Learned Implementing ChatOps
Email overload, distributed teams and excessive meetings have caused many organizations to move their DevOps teams to messaging platforms and thus adopt ChatOps workflows. With thousands of open source installs and hundreds of customer implementations, we have a few lessons to share on...

Corey Hulen
CTO and Co-founder @Mattermost
Kubernetes for Developers, Architects, & Other People
You've got kubernetes up and running, and you're ready for it to change your life! But, all you see now is a blinking cursor. What do you do now?!This talk explains what cloud native development is, how kubernetes supports it, and give you a toolkit to start planning for how you'll...

Michael Coté
Staff Technologist @VMware
Using Reinforcement Learning AI to Accelerate DevOps
You probably learned that hacking on code until it works is the wrong way to write a program. But today, that’s essentially what we do in AI (albeit trillions of times faster)—and it achieves remarkable results!Reinforcement learning was notably used by Google’s AlphaGo...

Mathew Lodge
Chief Executive Officer @diffbluehq
Pitfalls in Measuring SLOs
We built support for SLOs (Service Level Objectives) against our event store so we could monitor operations for our own complex distributed system. In the process of doing so, we learned that there were a number of important aspects that we didn’t expect from carefully reading the SRE...

Danyel Fisher
Principal Design Researcher @honeycombio
Design, Catalogue, Discover and Use Your Event Assets
How do you communicate about the Event assets in your organisation? Where do you keep what Events there are? Authors and users of RESTful APIs are used to a rich suite of tools that gather, document, manage, monitor and govern their APIs so that teams can collaborate on their API...

Tom Fairbairn
Solace Distinguished Engineer