Modern CI/CD pipelines and software supply chains are critical to delivering software quickly, but they are now also prime targets for attackers. Many organizations are unaware of the many ways that their practices and security approaches may be exposing them to greater risk. In this session we'll explore some of the vulnerabilities and common misconfigurations that have enabled attackers to compromise secured systems. Attendees will gain actionable insights and learn best practices to identify and mitigate exploits while improving their software delivery.

You will learn:

• Gain insight into real-world CI/CD pipeline vulnerabilities and how attackers exploit them.
• Actionable strategies to secure your software supply chain and mitigate risks.
• Discover best practices for identifying and addressing dangerous patterns in workflows.