Code security analysis, dependencies vulnerability scanning and supply chain security should be incorporated in the development process of any Go project.
In this talk, we will show how open source Go tools such as gosec, govulncheck and cosign make it easy to implement these security checks.
Code security analysis, dependencies vulnerability scanning and supply chain security should be these days incorporated in the development process of any Go project.
In this talk, we will show how open source Go tools such as gosec, govulncheck and sigsotre/cosign make it easy to implement these security checks in your project. Along the way, we will also present concrete examples from gosec project, where these tools are used to improve the security of the project.
GoLab is a conference made by Develer.
Develer is a company based in Campi Bisenzio, near Florence. Our motto is : "Technology to give life to your products". We produce hardware and software to create exceptional products and to improve industrial processes and people's well being.
In Develer we have passion for the new technologies and we offer our clients effective solutions that are also efficient, simple and safe for the end users. We also believe in a friendly and welcoming environment where anybody can give their contribution. This passion and this vision are what we've been driven to organize our conference "made by developers for developers".
