Absolute AppSec Ep. #236 - Memory Safe Languages, LLM Supply Chain Security

Seth and Ken review the recent Whitehouse report on going back to the basics for software security and vulnerabilities. Specifically, how is the use of memory unsafe languages like C and C++ affecting the overall security of the internet landscape. This include a discussion on formal verification and crocs and socks of software testing. Finally, thoughts are shared on the recent use of Hugging Face and Github to host malicious code/packages and how this is a natural progression for popular …

absolute appsec back basics internet languages llm memory memory safe memory safe languages report review safe security software software security supply supply chain supply chain security verification vulnerabilities whitehouse