Dec 09 2024 27 mins 3
In this episode, CRob talks to Michael Winser, Technical Strategist for Alpha-Omega, an associated project of the OpenSSF that with open source software project maintainers to systematically find new, as-yet-undiscovered vulnerabilities in open source code – and get them fixed – to improve global software supply chain security.
- 01:00 - Michael shares his origin story into open source
- 02:09 - How Alpha-Omega came to be
- 03:48 Alpha-Omega’s mission is catalyzing sustainable security improvements
- 05:16 - The four types of investments Alpha-Omega makes to catalyze change
- 11:33 - Michael expands on his “clean the beach” approach to impacting open source security
- 16:41 - The 3F framework helps manage upstream dependencies effectively
- 21:13 - Michael answers CRob’s rapid-fire questions
- 23:06 - Michael’s advice to aspiring development and cybersecurity professionals
- 24:44 - Michael’s call to action for listeners
Links
