Looking at open-source security concerns from a socio-technical perspective is currently underexplored. In this talk, we will learn about analyzing such risks by looking at governance structures, pull requests, and GitHub configurations in open-source 3D printer projects and the overall top Python repositories.
3D printers are a critical component in the industry supply chain, so it is important to secure 3D printer software and firmware. However, there are many open-source repositories that are related to 3D printing, meaning that anyone can contribute to a given project; in fact, even some proprietary software was forked from open-source repositories. In this session, we'll talk briefly about security risks of open-source development in the context of 3D printing; in addition, we will look at findings from the overall top 100 Python repositories on GitHub.
Speakers: Jessy Ayala