Open Source Security & Compliance for Containers and Serverless Functions

Presented by

Jason Hammond, Director of Solution Engineering at WhiteSource

About this talk

Nearly all cloud providers offer serverless capabilities and support containerized deployment of their customers’ applications. As organizations begin or continue to integrate serverless functions and containerized deployment into their operations, they will need to take the necessary precautions to ensure that their serverless functions and container images are secure. In this session you will learn why it is important to scan container images and serverless computing environments for open source libraries, and best practices for doing so, including: * Continuous scanning and monitoring of open source use in container images and serverless functions * Building a comprehensive inventory of open source libraries used in containers and serverless functions * Policy-driven management of security vulnerabilities and license compliance in container images and serverless functions

Related topics:

More from this channel

Upcoming talks (2)
On-demand talks (135)
Subscribers (12423)
WhiteSource allows engineering, security and compliance officers to effortlessly secure and manage the use of open source components in their software, allowing developers to focus on building great products. WhiteSource fully automates all open source management processes: component detection; security vulnerability alerts and fixes; license risk and compliance analysis along with policy enforcement; quality review, and new version alerts. It offers a complete suite of control, reporting and management to help software teams manage open source truly effortlessly. For more information about WhiteSource, visit or follow us on twitter: @whitesourcesoft