Security doesn't have to be another checkbox talk. In this session, I'll introduce OWASP and demonstrate security tools directly relevant to DevOps workflows like software composition analysis, secrets scanning, and pipeline security.

But here's the twist: I'll kick off an OWASP Juice Shop CTF that runs throughout the entire conference. Hack on it during breaks, open spaces, evening sessions, or whenever you need a mental reset. The leaderboard stays open across all conference days, and top hackers will be announced at closing—with symbolic prizes for bragging rights.

You'll learn:
- What OWASP is and why it matters for DevOps
- Practical security tools you can add to your pipeline today
- How to find and exploit common web vulnerabilities (legally!)

The capture-the-flag requires that the participants bring a laptop and have internet access