Zach Steindler

Principal engineer at GitHub working on open source supply chain security. Member of the OpenSSF TAC and co-chairs the OpenSSF Security Packages Repository Working Group.

Best podcasts with Zach Steindler

Ranked by the Snipd community

Nov 26, 2024 • 24min

Jack Cable of CISA and Zach Steindler of GitHub Dig Into Package Repository Security

Jack Cable, a senior technical advisor at CISA specializing in open source software security, and Zach Steindler, a principal engineer at GitHub focused on supply chain security, dive into the critical topic of package repository security. They discuss the significance of secure package management in the open-source ecosystem and highlight their recently published best practices guide. Their conversation includes insights on trusted publishing, community engagement for newcomers, and the lighthearted debate on personal tech preferences, showcasing their expertise and camaraderie.