Twitter | Search | |
Jeremy Long
builder, infosec, SCA and SAST enthusiast, blue team.
1,063
Tweets
170
Following
598
Followers
Tweets
Jeremy Long Jan 18
Replying to @noopkat
This capability is baked into powershell -
Reply Retweet Like
Jeremy Long Jan 17
Replying to @mattjay
So I've been thinking about this tweet for the last hour. You likely don't remember the brief time we met at BH a few years back - from what others I know have said about you - you're truely one of the people in our industry I would want to work with.
Reply Retweet Like
Jeremy Long Jan 17
Seriously - make upgrading part of your SDL with - if you have a decent set of unit and integration test continous upgrading is so simple.
Reply Retweet Like
Jeremy Long retweeted
Suman Sourav Jan 17
RT : Forbes article about LocoMocoSec conference from last year in case you missed it and wondering what it’s about.
Reply Retweet Like
Jeremy Long Jan 17
Replying to @mattjay
Congrats - that is a truly awesome review and something to strive for.
Reply Retweet Like
Jeremy Long Jan 17
This is a really awesome conference that you should attend if you can. While the venue is nice - it is the content and speakers that make this con standout.
Reply Retweet Like
Jeremy Long Jan 10
Replying to @scott44017
Couldn't agree more. I also advocate making upgrades part of your normal SDL:
Reply Retweet Like
Jeremy Long retweeted
Philippe De Ryck Jan 7
Awesome, got an accept, so I'm going to Hawaii in 2019. Looking forward to a great conference, and to observing in his natural habitat :)
Reply Retweet Like
Jeremy Long retweeted
Eric Johnson Jan 3
Kicking off the New Year with a new extension. Secure C# code scanning inside your build pipeline, completely self contained inside the build task. No external cloud hosted or scanning engines to maintain.
Reply Retweet Like
Jeremy Long retweeted
Andrew van der Stock Jan 1
Malicious code experts, ASVS needs your peer review. Completely revamped V13 Malicious Code. It's a pretty major change. If you're good at sub-domain takeover or finding or inserting bad code, pls log issues
Reply Retweet Like
Jeremy Long retweeted
Dependency-Track Dec 13
OWASP is beta testing Discourse for topic-based collaboration and we’re participating in the beta - because we have an awesome community! If you prefer a structured approach to collaboration, we invite you to join the discussions.
Reply Retweet Like
Jeremy Long retweeted
Moose Dec 8
For the first time in months, I allowed myself to play a new game instead of working on something for my career. It was so needed. And I didn't realize how burnt out I was. I miss my hobbies.
Reply Retweet Like
Jeremy Long retweeted
Steve Springett Nov 28
Replying to @jtantwtr @ctxt
It creates a URI that describes what the component is (ecosystem, group, name, version, etc) in a uniform way. Resolving NPM, Maven, RubGems, Docker, RPMs, etc can all have a standardized format. Its being adopted by all major BOM standards and vulnerability intelligence services
Reply Retweet Like
Jeremy Long retweeted
Steve Springett Nov 27
The official Java implementation for (aka ) has been pushed to Maven Central. I’ve been dogfooding a SNAPSHOT in Dependency-Track for the past few releases and it’s stable and works well.
Reply Retweet Like
Jeremy Long retweeted
Steve Springett Nov 27
Open source is a team sport. I’m always motivated when users are actively participating for the betterment of a project.
Reply Retweet Like
Jeremy Long retweeted
LocoMocoSec: Hawai’i  Product Security Conference Nov 24
Join us for a single-track product security conference and training on the Hawaiian island of Kauai from April 15-19th! Register for today to take advantage of Early Bird pricing!
Reply Retweet Like
Jeremy Long retweeted
Steve Springett Nov 23
Hear me talk at AppSec Cali about software transparency, , and . See you there! Registration , use 'HearMeAtAppSec20off' for 20% off
Reply Retweet Like
Jeremy Long retweeted
Dependency-Track Nov 23
Coming soon - Dependency-Track plugin for Fortify SSC - Will be launched with Dependency-Track v3.4.0 in December/January.
Reply Retweet Like
Jeremy Long Nov 22
who can I contact about an accounting issue?
Reply Retweet Like
Jeremy Long retweeted
LocoMocoSec: Hawai’i  Product Security Conference Nov 20
In case you missed it, you can check out all the talks from 2018 on our YouTube channel! Huge thanks to video recording sponsor for allowing us to capture and share this all-star track with everyone!
Reply Retweet Like