Podcast Episodes
Back to Search
Is GitHub's Copilot the new Clippy?
Episode 287
Josh and Kurt talk about GitHub Copilot. What can we learn from a report claiming 40% of code generated by Copilot has security vulnerabilities? Is t…
4 years, 10 months ago
Open source supply chain with Google's Dan Lorenc
Episode 286
Josh and Kurt talk to Dan Lorenc from Google about supply chain security. What's currently going on in this space and what sort of new thing scan we …
4 years, 10 months ago
Open source owes you nothing!
Episode 285
Josh and Kurt talk about open source bugs. What happens if a project decides to close most of their bugs? Nothing really. Bug trackers aren't a help …
4 years, 10 months ago
What happens when we DRM power tools?
Episode 284
Josh and Kurt talk about a Home Depot plan to put DRM on power tools. Anyone can add a computer to anything for a few dollars now. How secure is any …
4 years, 10 months ago
When vulnerability disclosure becomes dangerous
Episode 283
Josh and Kurt talk about a very difficult disclosure problem. What happens when you have to report a vulnerability to an ethically questionable compa…
4 years, 11 months ago
The security of Rust: who left all this awesome in here?
Episode 282
Josh and Kurt talk about a story from Microsoft declaring Rust the future of safe programming, replacing C and C++. We discuss how tooling affects pr…
4 years, 11 months ago
If you spy on journalists, you're the bad guys
Episode 281
Josh and Kurt talk about the news that the NSO Group is widely distributing spyware onto a large number of devices. This news should be a wake up cal…
4 years, 11 months ago
The perils of Single Sign On
Episode 280
Josh and Kurt talk about what happens when you lose access to your Single Sign On provider. These providers have become critical to many of us, if we…
4 years, 11 months ago
The audacity of Audacity: When open source goes rogue
Episode 279
Josh and Kurt talk about the events happening to the Audacity audio editor. What happens if a popular open source application is acquired by an unkno…
5 years ago
Could SELinux have stopped SolarWinds?
Episode 278
Josh and Kurt talk about a listener provided question. Could SELinux have stopped the SolarWinds attack? Given what we know, the answer is technicall…
5 years ago