BSidesSF 2017 has ended
Monday, February 13 • 1:30pm - 2:00pm
When Bandit(s) Strike - Defend your Python Code

Sign up or log in to save this to your schedule and see who's attending!

Feedback form is now closed.

Bandit is an open-source tool designed to discover common security flaws in Python code.  Although Bandit was originally developed to find issues in OpenStack (a large open-source cloud platform) it has since been adopted by many Python developers outside of OpenStack.  It has found dozens of critical security issues including: command injection, SQLi, insecure temporary file usage, and usage of insecure libraries. 

Join Travis McPeak, one of the core developers on the Bandit project to find out: how Bandit works, how to customize it for different workflows, how to create a Security CI pipeline with Bandit, and even how to extend it.


avatar for Travis McPeak

Travis McPeak

Sr. Security Engineer, Netflix
Travis McPeak is a Sr. Security Engineer at Netflix. He is a core developer of the Bandit, Repokid, and Aardvark projects. In his spare time he loves travel, snowboarding, and quality food/beer.

Monday February 13, 2017 1:30pm - 2:00pm