Software Engineering Radio - the podcast for professional software developers SE Radio 575: Nir Valtman on Pipelineless Security
10 snips
Aug 1, 2023 Chapters
Transcript
Episode notes
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21
Introduction
00:00 • 2min
How to Scale a Pipeline-Less Security Process
01:35 • 2min
The Challenges of Integrating Security Into Pipelines
03:06 • 2min
The Risks of Misconfigured Repositories
05:28 • 5min
The Pros and Cons of Integrating Security Tools in a Developer Environment
10:48 • 4min
The Importance of Pipeline Less Security
15:05 • 5min
The Future of GitHub Co-Pilot
20:32 • 2min
Pipelineless Securities: How to Implement It
22:17 • 2min
The Importance of Code Coverage in Pipeline Testing
24:23 • 2min
How Many Checks Do You Also Run?
26:03 • 2min
How to Measure a Pipelineless Security Approach
27:36 • 3min
How to Handle a High Security Risk in Your Code Base
30:44 • 3min
How to Avoid Hard Coded Secrets in GitHub
33:30 • 2min
How GitHub Advanced Security Works
35:26 • 2min
How to Avoid False Positives With a Pipeline Less Approach
37:43 • 2min
The Future of to Do List Culture
39:49 • 3min
Exploitability of Third Party Libraries
43:17 • 3min
How to Protect GitHub Repositories From Misconfiguration
46:33 • 3min
GitGoat: A Security Misconfiguration Tool
49:20 • 3min
How ANICA Works
51:52 • 3min
How to Be a Better Social Media Scientist
54:44 • 2min