PTA:Open Source Software Risks in DevOps / TDD in GameDev

https://secure.meetupstatic.com/photos/event/4/3/f/0/600_355817392.jpeg

· Welcome (start 18h00)

· Session 1 (start 18h20)

· Session 2 (start 18h45)

https://secure.meetupstatic.com/photos/event/4/4/0/4/600_355817412.jpeg

Title: TDD in GameDev

Our journey towards applying TDD in our GameDev endeavours with some lessons learned along the process

Facilitator: Sas & Matt van der Westhuizen

Sas van der Westhuizen: I started in 2015 as a Software Engineer at Entelect after graduating with a B.Sc (IT) from NWU Potchefstroom. Ever since I've spent the past few years developing systems for Liberty and I'm currently involved in the development of Stash, a micro investment app with the aim at saving without realizing it. In my free time, I enjoy climbing and playing games, but every so often I'll dabble in game development even if it's not that successful at times.

Matt van der Westhuizen: I'm currently a Technical Lead at Entelect where I've been building Java web applications for various clients over the last 4 years, but I've been doing software development in one form or another since 2005. My hobbies include gaming, boardgaming & reading and I've been dabbling in game development since the year 2000, but have yet to make a game that I think is good enough to try publishing.

https://secure.meetupstatic.com/photos/event/4/4/1/8/600_355817432.jpeg

Title: Open Source Software Risks (Security + Legal) in DevOps

Many in the open source community acknowledge that better Open Source Hygiene – particularly as it relates to application security – is necessary today.

Open source components provide critical functionality to all types of software development, and especially to agile projects. In particular, agile efforts benefit from the use of open source application frameworks, utility libraries, and functions for authentication and encryption.

However, Using open source is not without risk. Even projects that are well-curated and vetted by project community members can exhibit security vulnerabilities.

Components from well-maintained projects are unlikely to include common vulnerabilities such as those found by automated tools. However, they may be subject to the often-subtle, sometimes serious vulnerabilities that are discovered and disclosed almost daily by security researchers.

My talk will focus on three main things :

1. Developing a simple strategy for agile development teams to mitigate security risks from open source software entails selecting open source components without known vulnerabilities, and continuing to monitor those components throughout the application lifecycle.

2. Providing Agile Teams with Responsibility for Security, and the Right Tools

3. Looking at the legal implications from License complications (copyright/copyleft) on the open source software usage.

Facilitator: Tunde Ogunkoya

Technology Consultant focused on helping African businesses mitigate Cyber-Security risks as well as Legal/Compliance violations and operational risk on their Business Critical Applications

https://secure.meetupstatic.com/photos/event/4/4/2/c/600_355817452.jpeg

If you are new to the group, read our monthly meeting FAQ to answer some common questions (https://www.meetup.com/DeveloperUG/pages/Monthly_Meetings/).