Skip to content

Commit 67fadf5

Browse files
frankreyesgarciafrankreyesgarcia
committed
Adding Henrik info
1 parent a79c264 commit 67fadf5

File tree

2 files changed

+34
-18
lines changed

2 files changed

+34
-18
lines changed

software-supply-chain-workshop-4.md

Lines changed: 34 additions & 18 deletions
Original file line numberDiff line numberDiff line change
@@ -19,25 +19,41 @@ This workshop is organized in the context of the [CHAINS](https://chains.proj.kt
1919

2020
## Program
2121

22-
* 8h30 Welcome coffee
23-
* 9h Opening
24-
* 9h15 Keynote: Hervé Boutemy (Sonatype, Apache Software Foundation)
25-
* 10h15 Break + Poster session
26-
* 11h (order may change, duration TBD)
27-
* Talk 1: Aman Sharma, Build Integrity
28-
* Talk 2: Julien Malka, [Does Functional Package Management Enable Reproducible Builds at Scale? Yes](https://hal.science/hal-04913007)
29-
* Talk 3: Tina Heidinger (Github), Fredrik Skogman (GitHub), Github Attestations
30-
* Talk 4: Frank Reyes, Fixing Breaking Dependency Updates Using LLMs
31-
* 12h30 Lunch at Syster-o-bror
32-
* 14h Keynote: Henrik Plate (Endor Labs)
33-
* 15h Break
34-
* 15h30 Tool session
35-
* [maven-lockfile](https://github.com/chains-project/maven-lockfile/)
36-
* [sbom.observer](https://sbom.observer/), Andreas Bielk, Generating SBOMs for C/C++
37-
* [dirty-waters](https://github.com/chains-project/dirty-waters)
38-
* [ghasum](https://github.com/chains-project/ghasum)
39-
* 16h45 closing
22+
## Program
23+
24+
| Time | Event |
25+
|-------|---------------------------------------------------------------------------------------------|
26+
| 0830 | Welcome coffee |
27+
| 0900 | Opening |
28+
| 0915 | Keynote: Hervé Boutemy (Sonatype, Apache Software Foundation) |
29+
| 1015 | Break + Poster session |
30+
| 1100 | (order may change, duration TBD) |
31+
| | * Talk 1: Aman Sharma, Build Integrity |
32+
| | * Talk 2: Julien Malka, [Does Functional Package Management Enable Reproducible Builds at Scale? Yes](https://hal.science/hal-04913007) |
33+
| | * Talk 3: Tina Heidinger (Github), Fredrik Skogman (GitHub), Github Attestations |
34+
| | * Talk 4: Frank Reyes, Fixing Breaking Dependency Updates Using LLMs |
35+
| 1230 | Lunch at Syster-o-bror |
36+
| 1400 | Keynote: Henrik Plate (Endor Labs) |
37+
| 1500 | Break |
38+
| 1530 | Tool session |
39+
| | * [maven-lockfile](https://github.com/chains-project/maven-lockfile/) |
40+
| | * [sbom.observer](https://sbom.observer/), Andreas Bielk, Generating SBOMs for C/C++ |
41+
| | * [dirty-waters](https://github.com/chains-project/dirty-waters) |
42+
| | * [ghasum](https://github.com/chains-project/ghasum) |
43+
| 1645 | Closing |
4044

45+
## Talks
46+
47+
[Henrik Plate (Endor Labs)](linkedin.com/in/henrikplate)
48+
49+
<img src="workshop_4_assets/henrik_plate.jpeg" alt="Henrik Plateß" width=100px />
50+
51+
52+
<ins>Speaker Bio</ins>
53+
54+
Henrik Plate is the principal security researcher at Endor Labs. He formerly worked for SAP Security Research, where he established and led the focus topic “Open Source Security” starting 2014. He co-authored several academic papers on this topic, presented at academic and industry conferences like the RSA, is the project lead and core-developer of Eclipse Steady (an open source solution using program analysis techniques to assess the exploitability of vulnerabilities), and contributes to the Risk Explorer for Software Supply Chains (an open source solution to understand supply chain threats and safeguards).
55+
He earned his PhD in 2024 from the University of Rennes, France, with a thesis titled “On the Security Risks of Open Source Consumption: Vulnerabilities and Supply Chain Attacks in the Era of Open-Source-Based Software Development”. He received his MSc in Computer Science and Business Administration in 1999 from the University of Mannheim, Germany, and holds a CISSP certification.
56+
4157
## Sponsors
4258

4359
<div style="display: flex; justify-content: center;">

workshop_4_assets/henrik_plate.jpeg

25.8 KB
Loading

0 commit comments

Comments
 (0)