Dan Lorenc

Software Engineer @Google

Dan Lorenc is a Staff Software Engineer and the lead for Google’s Open Source Security Team (GOSST) He’s been working in the Cloud space for eight years and has mostly focused on open source tools related to building containers easily and securely. He founded projects like Minikube, Skaffold, TektonCD and Sigstore. Dan regularly blogs about supply chain security and serves on the TAC for the OpenSSF.
 

Find Dan Lorenc at:

Session

Resilience in Supply Chain Security

Open source usage has exploded in the last decade, but supply-chain practices and hygiene have not kept up. Unfortunately, attackers have started to notice and open source is under attack. We have hardening work to do on our existing delivery pipelines and supply-chains, but it's too late to keep attackers out. This means it's just as important to design resilient systems, those that help us gracefully recover when bad things do happen.

This talk will go over the real-world threats facing open source supply-chains today, and what you can do to architect resilient build and delivery pipelines.

Date

Thursday May 27 / 07:10AM PDT (40 minutes)

Track

Architecting for Resilience

Topics

ResilienceSecurityOpen SourceContinuous Delivery

Add to Calendar

Add to calendar

Share

Session

Architecting for Resilience Panel

Join us for the Architecting for Resilience Panel to widen your horizons on what architecting for resiliency means, hear ready-to-use examples from our panelists, and gain new ideas you can employ in your own context.

Date

Thursday May 27 / 09:10AM PDT (40 minutes)

Track

Architecting for Resilience

Topics

Resilience

Add to Calendar

Add to calendar

Share

Logo

Build your learning journey and level-up on the skills most in-demand in 2021. Attend QCon Plus (Nov 1-5, 2021).

Save your spot for $549 before August 31st

Register