On-Demand
Training 201: Understanding Reachability on GitHub with Semgrep Supply Chain
Our Speaker
On-Demand
Our Speaker
Head of Solutions Engineering @ Semgrep
For security teams looking to detect and action based on whether a vulnerable function within a vulnerable open source dependency is being used in their code, Semgrep Supply Chain’s reachability analysis cuts down the noise and helps prioritize such reachable security issues.
Join us as we cover:
How open source dependency scanning tools have been traditionally ineffective in separating the noise from actionable findings in GitHub
What is a reachable finding in Semgrep Supply Chain
A demo showing how to prioritize security issues in GitHub-hosted repositories
Resources
© 2024 Semgrep, Inc. Semgrep is a registered trademark of Semgrep, Inc.