Cyber attacks against open source projects have increased significantly in recent years. The Sonatype report shows that known attacks on open source repositories will increase by 633% year-on-year in 2022, and in the three years from 2019 to 2022, the average annual growth rate of the number of attacks will be as high as 742%. In the face of increasingly serious attack threats, open source security has become an important challenge faced by both enterprises and open source communities.
On September 2, the Open Atom Developer Workshop will invite experts from the Open Atom Open Source Foundation, Linux Foundation, Apache Foundation, Sangfor, ZTE and other industry experts to discuss how the development team can reduce the number of components in daily life in the form of roundtable dialogues. The security risks of vulnerabilities, how to establish an information sharing and vulnerability early warning platform, how to establish a long-term mechanism for security maintenance in the open source community, and how enterprises can establish their own security strategies and other topics provide solutions to the challenges for the industry.
The Open Atom Developer Workshop aims to share the experience and experience of developers participating in community building and share development experience. We sincerely invite open source developers and enthusiasts to actively participate. Please refer to the poster for the registration QR code. We look forward to your participation and welcome to share this event with more friends.
Activity time
September 2 (Saturday) 13:30-16:30
Event Location
Hall 3, Shenzhen Kexing Science Park International Conference Center
event agenda
13:30-14:00 Sign in
14:00-14:05 Sponsor's opening speech
14:05-15:30 Roundtable Dialogue: Source Security——On the Security of Open Source Projects
Topic 1: How can the development team effectively manage open source dependencies and update them in a timely manner to reduce the security risk of component vulnerabilities? What tools or programs are needed to improve the status quo?
Topic 2: How to improve the rapid location and repair mechanism of high-risk open source vulnerabilities? What information sharing and vulnerability early warning platforms can the industry establish? Topic 3: How to establish a long-term security maintenance mechanism in the open source community to avoid the legacy vulnerabilities of old components that have not been fixed for a long time? Are things like code audits and bug bounty programs feasible?
Topic 4: How should enterprises establish their own open source security strategies?
Topic 5: Open source usually means openness, and a high degree of openness also brings higher risks. Under the general trend of global open source, how should we balance the contradiction between openness and security?
Topic 6: In the face of escalating open source security challenges, professionals are indispensable. What suggestions do you have for the cultivation of open source security talents in enterprises?
15:30-16:00 Discussion on open source issues
16:00-16:05 Group photo
16:05-16:30 Free communication
At that time, platforms such as the official video account of the Open Atom Open Source Foundation will broadcast the whole process, make an appointment immediately, and listen to the wonderful insights of the big names on the future!
The Open Atom Developer Workshop series will continue to share cutting-edge technologies, exchange open source hotspots, promote open source culture, create exclusive community activities for developers, and build a bridge between developers, open source projects, and open source communities. We sincerely invite developers to continue to pay attention to and participate in, to jointly prosper the open source ecosystem.