ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "Security Processes at the Apache Software Foundation w/ Mark Thomas and Brian Fox"
Episode Synopsis
In our continuing series on the Struts2 vulnerability announcement and the breach at Equifax, we spoke with Mark Thomas, Director, Apache Software Foundation, and Brian Fox, CTO, Sonatype to clarify the processes ASF goes through when a vulnerability is found within one of their projects.
About Mark Thomas
Mark is currently employed by Pivotal where he spends most of his time working on Apache Tomcat. At the Apache Software Foundation, Mark is a committer and PMC member for Apache Tomcat as well as other projects. At the foundation level he is an ASF member, a member of the security and trademarks committees, is an infrastructure volunteer and a Director. Mark speaks regularly on Apache Tomcat including at ApacheCon.
About Mark Thomas
Mark is currently employed by Pivotal where he spends most of his time working on Apache Tomcat. At the Apache Software Foundation, Mark is a committer and PMC member for Apache Tomcat as well as other projects. At the foundation level he is an ASF member, a member of the security and trademarks committees, is an infrastructure volunteer and a Director. Mark speaks regularly on Apache Tomcat including at ApacheCon.
More episodes of the podcast The OWASP Podcast Series
ep2024-09 Threat Modeling with Takaharu
25/09/2024
ep2024-08 OWASP Projects Roundup
30/08/2024
ep2023-07 What's Audit got to do with IT
31/07/2023
AppSec at 40,000 feet
22/05/2023
In God we trust