DevSecOps in Practice:From Vulnerability Scanning to AI-powered Auto-remediation
As a software engineer, have you ever been exhausted by manually fixing vulnerabilities? Do you crave a more efficient way to fix them?
This workshop will take you through the magical process of using AI to automatically fix software vulnerabilities. You will build a sample project with security vulnerabilities and use an AI model to automatically fix them. You will also experience the traditional manual repair process and compare the differences and advantages and disadvantages of the two repair methods.
Session Objectives
- Deepening Participants' Understanding of DevSecOps.
- Exposing Participants to the Implementation of AI Automatic Patching of Code Vulnerabilities in CI/CD.
- Understanding the Current Capabilities and Application Scenarios of AI Patching of Security Vulnerabilities.
Session Summary
- Introduction to DevSecOps Concepts, Processes, and Tools.
- Building a Vulnerable Sample Project with III DevSecOps Tool Platform.
- Experiencing CI/CD Automatic Linking of Open Source Tools to Detect Project Vulnerabilities.
- Introduction to SonarQube for Scanning Project Vulnerabilities.
- Experiencing Manual Patching of Code Vulnerabilities.
- Experiencing AI Automatic Patching of Code Vulnerabilities.
- Comparing Manual Patching and AI Patching.
Device Requirement You Should Prepared for
- Laptop with Intel i5 processor or above and internet connectivity.
- Chrome browser.
- Recommended to install Git client software (Exp. Git, Sourcetree, TortoiseGit) and programming tools (Exp. VSCode, Notepad++).
Skills Requirement You Should Have
- Attendees are advised to have experience in information security, development, and IT.
Limit on the Number of Attendee
SPEAKER
TOPIC / TRACK
CyberLAB
LOCATION
Taipei Nangang Exhibition Center, Hall 2
4F 4D
LANGUAGE
Chinese
CYBERSEC 2024 uses cookies to provide you with the best user experience possible. By continuing to use this site, you agree to the terms in our Privacy Policy 。