Attending AI DevCon? Join Joseph Katsioloudes and discover practical ways to use AI for security through 12 GitHub Copilot demos from secure coding, to informed supply chain decisions, and secure SDLC.
π
June 1, 10:00 AM BST
π London, UK & Virtual
π https://tessl.io/speaker/josephkatsioloudes/
Your mother tongue is the new programing language for creating exploits.
For maintainer month, we took inspiration from #OpenClaw and built ProdBot! An intentionally vulnerable agent wired up with MCPs, skills, agentic workflows, and multi-agent capabilities. You will learn from it, while having fun!
Play now at: gh.io/secure-code-game
Learn more: https://github.blog/security/hack-the-ai-agent-build-agentic-ai-security-skills-with-the-github-secure-code-game/
Learn why some vulnerabilities resist to fuzzing and persist in long-enrolled OSS-Fuzz projects, and how you can find them!
Attending AI Native DevCon? Join @jkcso.bsky.social and discover practical ways to use AI for security through 14 live GitHub Copilot demos from secure coding, to supply chain decisions, to MCP servers.
π
November 19, 11:40 AM EST
π Industry City, Kings County, NY + online
π ainativedev.io/devcon
Join us at @nerdearla to discover how GitHub secures the open source software we all rely on. From groundbreaking security research and education initiatives to free tools for open source and programs that have strengthened the security of hundreds of projects worldwide β weβre excited to share it all!
π
November 14, 11 AM CET
π LaNaveMadrid + free online streaming
π nerdearla.es
π Hola Argentina! Weβre thrilled to be at #EkoParty this week!
If youβre around, swing by the GitHub booth β grab some stickers, play our security games, and chat with our experts about all things open source & security.
See you there π gh.io/eko
The internet was on fire. π₯
One small library affecting billions of systems.
Log4Shell was the biggest security vulnerability of all time.
Now, Log4J maintainer, Christian Grobmeier tells us what it felt like inside the flames π https://github.blog/open-source/inside-the-breach-that-broke-the-internet-the-untold-story-of-log4shell/
Are you in Warsaw for @thehacksummit ? Join Sylwia Budzynska for an introductory talk about security research, static analysis, and CodeQL: "From One Bug to Hundreds: Scaling Vulnerability Research with CodeQL"
π October 14, 11:20 CEST
Track: Security in Software Development & DevSecOps
The future of vulnerability disclosure needs to keep up with AI-discovered vulnerabilities.
Join Madison Oliver at DEF CON as she joins a panel on modernizing the CVE Program to meet the demands of AI-scale discovery, real-time coordination, and global software supply chains.
ποΈ Saturday, August 9 | β° 12:30 PM
π Policy Stage | Room 234
