Full Session Description:
In this hands-on class, students will start by packaging a sample application and publishing it to Artifactory. They will then learn how to use JFrog Xray to index the application and exploit the component graph to scan for known vulnerabilities and other issues. Next they will use Snyk to retrieve the contextual information about the vulnerability itself, and will have a hands-on session actually exploiting the vulnerabilities on this application. The vulnerability exploiting section will be followed by using Snyk to remediate the vulnerabilities, then re-publish the application to Artifactory and lastly see vulnerabilities were removed with JFrog Xray. This is a half day class.
Who should attend:
Application Security Engineers, DevOps engineers and Developers who are looking to get hands-on experience of using JFrog Xray and Snyk to detect and fix vulnerabilities in their open source dependencies and binaries.
Technical Requirements:
Please bring your own laptop, power cables, USB devices etc.
