Session Name: Learn how to (not) use secrets with OWASP WrongSecrets!
If you want to bring an app to production, you need to know where to put your secrets and how to access them safely. In this session, we'll go into how to *not* use secrets with a purposefully vulnerable application. We hope you'll take this knowledge and not make the same mistakes in your own app. Of course, you'll also learn a thing or two on how to do secrets management properly!
Jeroen Willemsen is the project lead of OWASP WrongSecrets and a jack of all trades in security. He loves to develop new software, set up DevSecOps support tooling, and help companies with security programs. He enjoys sharing knowledge, which is why he published articles, and blogs and gave trainings and talks about various subjects.