What does "make opensource ecosystem secure one audit at time" mean (for you and for me)? (osc25)

Ever wonder what goes on behind the scenes to keep your favorite open-source projects (relatively) secure? Spoiler alert: it's not magic (mostly)! This talk is a peek into the world of a security engineer who spends their days auditing code, hunting down vulnerabilities, and trying to make the open-source world a little less "Oops!" and a little more "Awesome!". We'll dive into: - What actually goes into a software audit. (Think less "spreadsheets," more "WTF is that?") - The thrill (and occasional horror) of vulnerability research. - Why this matters to you, even if you don't write code for a living. (Hint: it's about more than just avoiding the next big breach.) - How we, as a community, can all contribute to making open source safer – because, let's face it, we're all in this together. So, if you've ever been curious about the security side of open source, or just want to hear some war stories from the front lines, come join me! Let's talk about how we can make the open-source ecosystem more secure, one audit at a time. For you, for me, for everyone! Licensed to the public under https://creativecommons.org/licenses/by-sa/4.0/ about this event: https://c3voc.de