Sydney Python

Name: Sydney Python
Start: 2019-11-28T18:00:00+11:00
End: 2019-11-28T21:00:00+11:00
Location: IRESS sydney

Hosted by Xuanyi C. and 3 others

Meet the group

Sydney Python (SyPy)

No reviews yet

Details

Talk 1: Application Security Breaches - Cameron Townshend
Open-source software (OSS) has transformed the way we build software, for the better. It’s designed for reusability, transparency, ease and allows you to incorporate components into your own applications as dependencies. Most of the companies and applications we rely on today, are only made possible because of OSS.

But, the power of OSS did not come without also introducing significant risk. Open-source projects have vulnerabilities. In fact, last year 51% of JavaScript packages downloaded had a known vulnerability and 12.1% of Java packages had a known vulnerability. Or, they could be maliciously attacked by bad actors, compromising any applications that depend on those projects. Dependencies hosted in public repositories can disappear, breaking your builds. Complexity can obscure the true surface area of your application, making it difficult to spot security holes in your apps. The list goes on.

The good news - all of the risks can be prevented with responsible building practices. In this session learn how to:

Pick trusted sources for OSS components, and why it’s important
Get started with free tools to begin checking for issues in components
Improve the speed/reliability of your build pipeline
Automate your OSS security, from 25 days of manual work, down to 5 minutes.

Demo's will include:

Google hacking to find vulnerable frameworks on public Websites.
Exploiting Vulnerable Python Framework (PyPI)
Exploiting Vulnerable Javascript Framework (npm)
Remediation workflow and release automation

Talk 2: Software development and Reality - Dmytro Shuiskyi
In many companies software development time frames are heavily influenced by client deadlines. Which causes a tug of war between speed of delivery and product quality. In this talk I'll try to tackle the question "How to keep up delivering quality products under time pressure?"

---------------------------------------------------------------------------------------
We would like to invite you to share your knowledge and experience at our monthly Sydney Python (SyPy) meetup. We are interested in all talks that relate to Python, use Python or that could be useful to Python programmers. If you are interested please fill out this form: https://goo.gl/forms/8BwCTdlhIzUWW6mC3

Events in Sydney, AU

Sydney Python

Sydney Python (SyPy)

Details

Members are also interested in