February Meetup

Thrilled to share the news about our upcoming February meetup scheduled for the 15th! . Make sure you seize the chance to acquire valuable insights directly from the stage through engaging talks by Jit and Semgrep.

Join us for an educational experience, networking, delicious food, expertly crafted cocktails, and, of course, the chance to snag some cool swag and participate in exciting raffles Courtesy our awesome hosts.

Talk #1 Tackling Vulnerabilities in Third-party Packages

Title: Tackling vulnerabilities in third-party packages
Dependency scanners often overwhelm developers with non-critical issues, reducing development efficiency. This session will introduce strategies for effective software dependency management, aimed at realistic security goals. We'll cover how to identify and prioritize key vulnerabilities using tools like code-scanning reachability analysis, ensuring a smoother remediation process.
Speaker: Kyle Kelly - Security Research at semgrep
Kyle Kelly is a Security Researcher on the Supply Chain Team at Semgrep, a fast, open source static analysis tool for finding bugs, detecting vulnerabilities in third-party dependencies, and enforcing code standards. In addition, Kyle is the Founder of CramHacks, a Supply Chain Security Newsletter, where he tries to convince people coffee is a supply chain risk.

Talk#2 Velocity + Safety - Security Metrics All Engineers Should Care About
Measuring security remains difficult - but in order to level up as an industry we need to be more transparent about how we measure and optimize our security practices. This talk will unpack a novel and measurable way to quantify security progress, the same way we measure other engineering disciplines.

Speaker: Aviram Shmueli, Chief Research Officer
As the Chief Research & Innovation Officer and Co-Founder of Jit, the Continuous Security Platform for Developers, Aviram combines his passion for creating innovative products with deep expertise in security. With over 20 years of hands-on experience, he has held senior roles in research, engineering and product management at industry-leading organizations such as CyberArk & SentinelOne. A strong advocate for the transformative power of OSS, he believes in giving back to the community—a principle central to Jit’s ethos. Aviram holds a B.Sc & M.Sc in Computer Engineering, an MBA, and an MA in Law