Ryan Slama
Software Engineer at Slack
Actions
Ryan Slama is an Software Engineer on Slack’s Product Security Foundations team. He builds scalable solutions to common security problems through automation and designs that make classes of issues impossible. Recently, Ryan spoke at DEF CON 28’s AppSec Village on managing risk from vulnerabilities in open source dependencies. He was the primary developer of Slack’s Log Canary project which rapidly detects sensitive data that leaks into logs and expedites remediation which was the topic of his talk at LocoMocoSec 2020.
Links
10,000 Dependencies Under The Sea: Exploring and Securing Open source dependencies.
What lurks beneath the surface of the modern codebase? Often, the answer is thousands of unvetted and potentially insecure open source dependencies. Come on our journey of creating scalable tooling and processes to automatically identify vulnerabilities in these packages and handle the question of “ok we found this, who’s going to fix it?” We will share lessons learned and thoughts on how our experience can help your security org tackle this common problem.
Please note that Sessionize is not responsible for the accuracy or validity of the data provided by speakers. If you suspect this profile to be fake or spam, please let us know.
Jump to top