The duo are back for a discussion on securing machine learning models using Sigstore, based on a recent blog post from Google Security. Followed by some spicy takes on opinions on vibe coding and its effects on application and product security. Finally, short-lived tokens used to exploit RCE against the GitHub CodeQL Action.

Rss Apple Podcaster
Podden och tillhörande omslagsbild på den här sidan tillhör Ken Johnson and Seth Law. Innehållet i podden är skapat av Ken Johnson and Seth Law och inte av, eller tillsammans med, Poddtoppen.

Absolute AppSec

Episode 281 - Signing Models, Vibe Coding, GitHub Action Abuse

00:00