Software Security

**Improving Office in Franklinton** Physical location: Improving Office 330 Rush Alley Suite #150 Columbus, OH 43215 Schedule: 6:00 p.m.: Socialize, eat, and drink. Improving will be providing pizza and beverages. 6:30 to 8:00 pm. Main meeting and presentation(s). Topic: This month John Lairson will share a notebook describing the Alpaca (Paper) Trading API and discuss different algorithms for evaluating stock trades. We meet on the last Monday of each Month. Presentations are given by members and friends of this group. If you would like to do a presentation (small or large) on a python topic, please contact Central OH Python at centralohpython@gmail.com

**✅ Bachata Mondays with Todd Smith!** **👉 Beginner Bachata Class** **$15 In Advance / $20 At the Door** 7:00 pm – 7:15 pm … Registration 7:15 pm – 8:15 pm … Beginner Class **👉 Intermediate Bachata Class** **= $15 In Advance / $20 At the Door** 8:15 pm – 8:30 pm Registration 8:30 pm – 9:30 pm Intermediate Class **👉 If You Take Both Bachata Classes** **= $25 In Advance / $35 At the Door** **👉 Buy Advance Tickets Now at:** https://columbussalsadancing.com/bachata-mondays-dance-class-tickets/

**✅ Bachata Mondays with Todd Smith!** **👉 Beginner Bachata Class** **$15 In Advance / $20 At the Door** 7:00 pm – 7:15 pm … Registration 7:15 pm – 8:15 pm … Beginner Class **👉 Intermediate Bachata Class** **= $15 In Advance / $20 At the Door** 8:15 pm – 8:30 pm Registration 8:30 pm – 9:30 pm Intermediate Class **👉 If You Take Both Bachata Classes** **= $25 In Advance / $35 At the Door** **👉 Buy Advance Tickets Now at:** https://columbussalsadancing.com/bachata-mondays-dance-class-tickets/

Join DotBitz for an interactive course preview and introduction session designed for students, parents, and aspiring learners interested in Web development, programming and future AI technology careers. During this session, you will learn about: * DotBitz learning programs and course pathways * How students can start learning programming from an early age * Career-focused learning and mentorship opportunities * Real-world skills students can develop through technology education * Future opportunities in software development and technology careers * How AI will be impact in our future career. This event is a great opportunity to explore how DotBitz supports students from beginner learning to career readiness in a structured and supportive environment. ### Event Details 📍 Location: Columbus Metropolitan Library 4500 Hickory Chase Way, Hilliard, OH — Meeting Room 2A 📅 Date: May 18, 2026 🕔 Time: 5:00 PM – 6:00 PM We welcome students aged 9+, parents, beginners, and anyone interested in learning more about programming education and technology career pathways.

**\*\*\* We've Moved! Bold Penguin - 6555 Longshore St, Dublin, OH 43017 \*\*\*** Talk by Todd Nussbaum LGTM is not a Strategy Pull requests are where quality is won or lost, and too many teams still treat reviews with a rushed "LGTM". In this talk, you'll learn a practical, repeatable approach to high-quality PR reviews that balances speed with risk management - covering how to triage changes quickly, review in layers, and write comments that lead to better outcomes without friction. We'll also show how QA and developers bring complementary lenses to the same review, turning acceptance criteria, scenarios, and observability into shared responsibility instead of production surprises. You'll leave with a lightweight framework and concrete habits for authors and reviewers that make reviews faster, kinder, and more effective. **AGENDA:** * See updates to parking below * Doors open at 5:30, feel free to come and hang out before! * Official start of the meeting is at 6:30pm * After the meeting is done, we will go hang out at a nearby space in Bridge Park! If you can, please sign up via meetup by noon the day of the meeting so we can have an estimate headcount for food :) We always order extra, so feel free to join us even if you don't get signed up! Thank you to Bold Penguin for providing the food and location! **Parking & Arrival:** **Parking:** Parking in Bridge Park is free. The closest lots are the Mooney Garage and the Hotel/Endres Garage. **Entry:** The doors to the office are to the right of PINS. The street level door and elevators lock at 6pm. If you arrive after that, someone should be there to let you in, else call the number posted. Take the elevator to the 2nd floor. Once you exit the elevator, turn right. \*\*\* We are a bunch of professionals, students, and geeks who are excited about Ruby programming language ([http://ruby-lang.org/](http://ruby-lang.org/)) and Rails framework ([http://rubyonrails.com/](http://rubyonrails.com/)) and the joy they have brought back to web development. Our main goal is to share the love of the Ruby and Rails ecosystems with anyone that is interested. We cater to everyone, whether a non-programmer through advanced Rubyists. * We give lectures on programming topics * We freely provide decades worth of experience * For full details of this month's meeting please visit [http://columbusrb.com](http://columbusrb.com)

Main Library, Meeting Room 2B Join us for a welcoming evening of reflection, gentle music, and meaningful conversation. We’ll begin with a short grounding moment, followed by a brief reading from spiritual or philosophical traditions, and an open reflection circle where participants can share (or simply listen). Libera Animae is an interfaith community focused on inner growth, creativity, and authentic connection. All backgrounds are welcome.

**Building a great product is one thing—building momentum behind it is another.** Join **Senior Product Manager Adam Solaiman** and **User Experience Manager Tyson Smith** for a behind-the-scenes look at what it takes to turn complex ideas into scalable products inside large organizations. In this session, they’ll share how teams move from ambiguity to execution—navigating organizational complexity, aligning stakeholders, and continuously evolving products after launch. You’ll walk away with insights on how to: * Build and sustain momentum across teams * Adapt to changing priorities without losing direction * Scale products thoughtfully in complex environments Whether you're driving a new initiative or growing an existing product, this conversation will give you practical strategies to keep things moving forward. Come connect, learn, and swap stories with fellow product professionals. \-\-\- Food and drinks will be provided by Switchbox, our generous host. Free parking will be available at the front and back sides of the Switchbox Office.

**Latest Dojo Location!** **Knotty Pine Brewing** 1765 W 3rd Ave, Columbus, OH 43212 We're going to try a new dojo location for a few weeks and see how it works Dojos are informal Python group study sessions where everyone interested in Python gathers to learn about Python, help others with Python, or just hang out. Everyone is welcome from Python beginners to experts. Bringing a laptop is encouraged (we'll have extension cords and power strips). If there's something you want to learn leave a comment on this invite so we can plan ahead. We're looking for speakers for our Monthly Meetups! Fill out the form if you are interested in presenting to the Python Community. https://forms.gle/ehSfUAC2WgR34Crq9

We will show how to build custom agents with Microsoft Agent Framework. Attendees will learn how to build and custom host agents when Microsoft Foundry is not a viable option.

What does a trojan look like when it has over 900k+ combined installs and a Forbes write-up? Exactly like a legitimate Chrome extension. This session presents a technical dissection of two Chrome extensions, each with over one million active installations — that functioned as trojans in production environments, evading detection while operating through entirely legitimate browser APIs. These were not obscure tools. They were widely trusted, actively recommended, and covered by mainstream press before their malicious behavior was fully understood. We will walk through the actual source code of both extensions, showing precisely how the malicious functionality was constructed, concealed, and executed at scale. This analysis anchors a broader examination of how modern compromises actually succeed. Drawing on aggregated real-world incident data, we identify the technique categories currently delivering the highest adversary return, and why they keep working. Spoiler: it's rarely a zero-day. It's trust. The Chrome extension deep-dive will cover: * Line-by-line source analysis of how malicious functionality was embedded within working, useful software * Which browser permission scopes were abused, and why a million users — and their IT teams — didn't see it coming * The behavioral and structural indicators that distinguish a trojan extension from a legitimate one, and how to operationalize detection around them This session closes with a practical defensive prioritization framework built around observed attacker behavior: which mitigations are measurably reducing risk in production environments, which are consuming budget without impact, and a scoring methodology your team and leadership can apply immediately. **Source material:** Primary analysis of extension source code, corroborated by reporting from Forbes and other established outlets. **What this is not:** A vendor pitch, a speculative threat narrative, or a surface-level breach retrospective. **Who should attend:** Security architects, AppSec and cloud security practitioners, blue team leads, threat hunters, browser security practitioners, and security leaders responsible for prioritizing risk and investment decisions.

Customer identity resolution becomes increasingly complex as organizations scale across multiple systems, regions, and data formats. Traditional rule-based approaches often fail to keep up with data variability, require constant manual tuning, and struggle with real-time processing needs. This session presents a practical approach to building a scalable identity resolution pipeline using AWS services and modern AI techniques. The architecture combines data ingestion through Amazon S3 and AWS Glue, transformation pipelines using Spark on EMR, and machine learning models deployed via SageMaker for entity matching and standardization. Graph-based relationship modeling is implemented using Amazon Neptune to improve resolution accuracy by incorporating household and shared attribute context. We will walk through how machine learning models can be used for name and address normalization, how intelligent blocking strategies improve matching efficiency, and how feedback loops can be introduced to continuously improve accuracy. The session also highlights how serverless components such as AWS Lambda can be used for orchestration and real-time processing. **SPEAKER BIO** Mosaic Syed is a Senior Data Engineering and Cloud Solutions Architect with over 20 years of experience designing and delivering scalable, secure, and high-performance data solutions across global enterprise environments. https://www.linkedin.com/in/mosaic-basha-syed-92300856 **CALL FOR SPEAKERS** Learn more: [https://www.awscolumbus.com/get-involved/](https://www.awscolumbus.com/get-involved/) **THANK YOU** *VEEAM* for hosting our meetup! To learn more about *Veeam*, please visit their website: [https://www.veeam.com/](https://www.veeam.com/) **DIRECTIONS** 8800 Lyra Dr #450 · Columbus, OH go to 4th floor. **Want to sponsor the pizza and/or bar tab?** Please contact me if you would like to sponsor this meetup's pizza and/or bar tab: angelo@mandato.com

Join the Columbus AI community for our quarterly gathering — a casual, community-focused evening where everyone has a chance to share, learn, and connect. These open mic–style events give anyone in the community up to **5 minutes** to present a project, share a tool, pose a question, or offer a perspective on the evolving AI space. No slides required — just a welcoming space to exchange ideas and keep the local AI conversation moving. If you’d like to take the stage, message \*\*Chris (the organizer)\*\*with a **title and short description** of what you’d like to share. Whether you’re deep in the field or just getting curious, come connect with others building and exploring AI in Columbus. Sponsored by [Transform Labs](https://www.linkedin.com/company/transformlabs/) Sign up also accessible via [Transform Labs Luma](https://luma.com/transformlabshq)

**Important time note:** Please plan on arriving between 5:30 and 6:00 as the elevators lock after 6 and you'll need to message us and we'll need to come get you. The building address is 4450 Bridge Park The entrance is 6620 Mooney St, Suite 400 You will need to scan your ID at the door to get a visitor badge. **Abstract** TBD **YouTube Link** TBD

Bring your work or your hobby, hang out, and code with us. Follow @buckeyecocoa for more information.

QA or the Highway is a one-day, affordable, regional, professional conference featuring real-world experience and thought leadership in the QA and testing industry. This is a ticketed event please register here: https://www.qaorthehwy.com/ Featured Keynote Speakers: **Matthew-Hope Eland** **(Wizard at Leading EDJE)** \- An AI Specialist and Wizard at Leading EDJE who is known to teach software engineering\, AI\, and data science concepts in the most ridiculous ways possible\. Matt has used machine learning to settle debates over whether Die Hard is a Christmas movie\, reinforcement learning to drive the behavior of digital squirrels\, data analytics to suggest improvements to his favorite TV show\, and AI agents to play board games and create an AI agent with the personality of a dog\. Matt is the author of "Data Science in \.NET with Polyglot Notebooks" and "Refactoring with C\#" as well as several LinkedIn Learning courses\. Matt helps organize the Central Ohio \.NET Developer Group\, runs several blogs and a YouTube channel\, has a Master’s of Science in Data Analytics\, and is a current Microsoft MVP in AI and \.NET\. **Tatyana Arbouzova** **(CEO at Innovate QA)** \- Tatyana Arbouzova is an engineering and business leader with a strong background in Quality Engineering across multiple industries\, including Big Tech\, Healthcare\, and Entertainment\. She has held leadership roles at world\-class companies such as Microsoft\, VMware\, Disney\, and The Pokémon Company International\, where she focused on building quality\-driven cultures and scaling teams to deliver high\-impact products\. With decades of experience\, Tatyana has helped organizations transform their quality practices so teams can deliver software efficiently\, confidently\, and with measurable business outcomes\. Today\, Tatyana advises software companies on adopting AI to optimize quality practices and improve how software is delivered at scale\. She is also a passionate community builder and the founder of Innovate QA\, a thriving Seattle\-based community and conference for quality professionals\.

**Welcome to Drunken Philosophy** a casual, curious social discussion **Optional topic for this meetup: What's up with all the AI hate?** A recent survey found that 74% of Americans have a negative view of AI, and I want to know why. Come out and debate whether AI is good or bad. My hot take: a labor-saving tool that could potentially help cure cancer gets called dangerous because it might raise unemployment or cause a speculative investment bubble, that tells you a lot more about capitalism and the economic system we live under than it does about the tool itself. As a computer programmer, I think AI is a wonderful tool that has increased my productivity by at least an order of magnitude. I'd go so far as to say Claude Code is the best tool I have ever used. Debate me and name a better one. Is AI potentially dangerous? Yes, but so are a lot of tools. Chainsaws. Steam engines (early ones would occasionally explode and kill everyone in the room). Do you think cavemen sat around debating whether fire could be used as a weapon or for self-harm, and decided not to discover it? I have two friends who hate AI for opposite reasons: one thinks it's a fad and not useful, and the other thinks it's going to take over everything and cause human extinction. Come out tonight, have a friendly debate, and make some friends. No lectures. Friendly crowd. Drop in for one drink and stay if it's fun.

Christians in Tech is a community at the intersection of faith and technology. Our meetups are designed to spark meaningful conversations, promote knowledge sharing, and encourage growth—both in your career and your spiritual walk with God. Whether you're an experienced professional or just starting your tech journey, CIT welcomes you. Our Website [https://linktr.ee/citcbus](https://linktr.ee/citcbus) Sponsors and Partners * Improving (Venue Sponsor) * Bethel World Prayer Center (Fiscal Sponsor) * Fruits & Roots (Coffee Partner)

This meetup is a beginner-friendly session introducing version control for Unity projects, with a look at three common tools: Git, Perforce, and Unity Version Control. The goal is to help you understand what version control is, why it matters for Unity development, and what options are out there. The format will likely be presentation-style, with live demos and time for questions throughout. You'll see each tool in action and learn how they fit into a Unity workflow. What to Expect: * An introduction to version control and why it's essential for Unity projects * An overview of Git, Perforce, and Unity Version Control * Demos of each tool in a Unity workflow * Tips for getting started * No prior version control experience required * Resources for continued learning All experience levels are welcome. Whether you're new to version control or already using one of these tools, this session will help you understand what each one offers. Food and drinks provided. Join us to learn more about version control options for Unity.

PLEASE NOTE!!! This event will be In-Person for our very 1st Improving collab! If you know the [Columbus Unity group](https://www.meetup.com/columbus-unity-user-group/) location, we'll be at the same place. This is our 1st event and are doing a soft launch with limited attendance. 1st come 1st serve. If you want to be there and we fill up, please email me at [info@thecogg.com](mailto:info@thecogg.com) and I'll be in touch. All street parking is free on Sundays but you can also pay to park in any of the local garages. See image of [parking map here](https://drive.google.com/file/d/1Mr9_LFIggbs-0_Zd3AJTGNqEhgMf2TzQ/view?usp=sharing). \-\-\- On the last Sunday of the month, we're having our usual end-of-the-month social gathering with our GameDev Meetup meeting. There will be announcements and presentations followed by some social networking Let's continue the conversations with good vibes and friends. All are welcomed from all ages and backgrounds to this public event. If we can, we'll be streaming or uploading the video later via our COGG YouTube channel here: [https://www.youtube.com/@TheCOGG/streams](https://www.youtube.com/@TheCOGG/streams) (Also please do subscribe if you have not done so!) No game development experience required! If you are interested in doing a 20 minute game development related presentation, please fill out our form online here: [https://goo.gl/forms/lVdTJZiNJewlPJuj1](https://goo.gl/forms/lVdTJZiNJewlPJuj1) Or e-mail us at info@thecogg.com with the following: Your Name, Company/Affiliation, Name of Your Game/Topic, Description, Tech Needs, and Your Contact. Be sure to check out our Discord for real time news updates: [https://discord.gg/NrBhuNQ](https://discord.gg/NrBhuNQ)