Open Source Summit North America 2025: Full Schedule

June 23 - 25, 2025
Denver, Colorado
View More Details & Registration
Note: The schedule is subject to change.

The Sched app allows you to build your schedule but is not a substitute for your event registration. You must be registered for Open Source Summit North America 2025 to participate in the sessions. If you have not registered but would like to join us, please go to the event registration page to purchase a registration.

This schedule is automatically displayed in Mountain Daylight Time (UTC/GMT -6). To see the schedule in your preferred timezone, please select from the drop-down menu to the right, above "Filter by Date."

IMPORTANT NOTE: Timing of sessions and room locations are subject to change.

arrow_back View All Dates

11:00am MDT

Turning Policies, Standards, and Governance Into Enablers for Open-Source Innovation - Mark Paulsen, TD Bank

Wednesday June 25, 2025 11:00am - 11:20am MDT

Bluebird Ballroom 2F

Policies, standards, and governance are often perceived as hurdles for innovation - especially within regulated industries where it may be difficult to leverage and contribute to open-source. But there is a way to reframe these perceived obstacles and turn them into streamlined "guardrails" that can help drive innovation and enable the ability to not only consume, but also contribute to open-source.

Speakers

Mark Paulsen

Head, Open-Source Program Office, TD Bank

Over 20 years of experience in the tech industry working in startup environments as well as global enterprises. Passionate about building open and welcoming communities and helping developers around the world be successful, keep in the flow, and be happy in the job they love.

Wednesday June 25, 2025 11:00am - 11:20am MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Beginner

11:00am MDT

Panel Discussion: From First PR To Lifelong Impact: Helping People Thrive in Open Source - Dawn Foster & Ruth Ikegah, CHAOSS; Sandeep Kanabar, Gen; Shuah Khan, The Linux Foundation

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3H

Open source is the foundation of modern software, yet many projects struggle with sustainability—not just in attracting contributors, but in ensuring they stay, grow, and thrive. The landscape of open source contribution has evolved dramatically, demanding a fresh approach to community building and contributor engagement.

Traditional pathways into open source don’t work for everyone. This panel brings together experts who have successfully expanded contributor pipelines beyond the usual audience—through initiatives like the CNCF Deaf and Hard-of-Hearing WG, CHAOSS Africa, and mentorship programs. We’ll explore best practices for guiding contributors from their first PR (or non-code contribution) to meaningful, long-term engagement.

Beyond code, open source thrives on diverse contributions: marketing, content creation, event planning, automation, governance, and more. By broadening the definition of “contributor,” we lower barriers to entry, strengthen projects, and build a more inclusive, resilient ecosystem.

Join us for a discussion on how we can transform contributor journeys to be more inclusive, fulfilling, and impactful for individuals and the broader open source ecosystem.

Speakers

Dawn Foster

Director of Data Science, CHAOSS

Dr. Dawn Foster works as the Director of Data Science for CHAOSS where she is also a board member / maintainer. She is co-chair of CNCF TAG Contributor Strategy and an OpenUK board member. She has 20+ years of experience at companies like VMware and Intel with expertise in community... Read More →

Sandeep Kanabar

Lead Software Engineer | CHAOSS Asia WG, Gen (formerly NortonLifeLock)

Hailing from India, Sandeep is a passionate software engineer working at Gen (formerly NortonLifeLock), a global leader in CyberSecurity. A frequent meetup speaker, Sandeep enjoys sharing his lessons with the community. He's a staunch advocate for open-source, diversity and inclusion... Read More →

Shuah Khan

Kernel Maintainer & Linux Fellow, The Linux Foundation

Shuah Khan is a Kernel Maintainer & Linux Fellow at The Linux Foundation. She is an experienced Linux Kernel developer, maintainer, and contributor. She authored, A Beginner’s Guide to Linux Kernel Development (LFD103) training course. She designed and leads the Mentorship program... Read More →

Ruth Ikegah

Community Lead, CHAOSS Project

Ruth Ikegah is an Open Source Program Manager, Technical Writer, GitHub Star, and Public Speaker. She serves as the Community Lead at CHAOSS Africa, working to improve the health of Open Source communities on the continent. She also doubles as a maintainer in the Diversity, Equity... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

11:00am MDT

Implementing Zero Trust in Government Settings: Strategies, Challenges, and Best Practices - Steve Taylor, DeployHub, Inc

Wednesday June 25, 2025 11:00am - 11:40am MDT

Bluebird Ballroom 3G

With escalating cyber threats and increasing regulatory pressure, government agencies face a critical need to modernize their security strategies. The Zero Trust model—"never trust, always verify"—has emerged as a cornerstone for safeguarding sensitive data and infrastructure. However, implementing Zero Trust in government settings presents unique challenges, including legacy systems, complex compliance requirements, and the need to balance security with operational efficiency. This talk will provide a roadmap for adopting Zero Trust principles in government environments, offering actionable insights to overcome obstacles and ensure mission readiness.

Speakers

Steve Taylor

CTO, DeployHub

Steve Taylor is a visionary and leader in open-source security, DevOps, and securing the software supply chain. Long before “CI/CD” became a buzzword, Steve was designing cutting-edge pipelines for Fortune 1000 companies, redefining how software is built and deployed. His innovative... Read More →

Wednesday June 25, 2025 11:00am - 11:40am MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Beginner

11:20am MDT

Unlocking Telco APIs: How Open Source Is Driving Standardization & Interoperability - Markus Kummerle, Deutsche Telekom

Wednesday June 25, 2025 11:20am - 11:40am MDT

Bluebird Ballroom 2F

In the world of API development, standardization & interoperability are essential for seamless integration across industries. CAMARA Project, in collaboration with GSMA, TM Forum, and the LF, leads the charge in harmonizing telco API standards. Through open collaboration, the project has established a unified, industry-wide framework that simplifies API adoption for telco operators, enabling them to integrate with marketplaces, aggregators, & hyperscalers more efficiently.
This session summarizes the telco API ecosystem, the key organizations shaping it, and how developers can get involved:

How CAMARA defines telco end-user-facing APIs and streamlines adoption for operators; The GSMA Open Gateway Initiative’s role in standardizing API distribution across different channels;
TM Forum’s work in enabling communication between operators, marketplaces, and hyperscalers; and Practical ways developers can contribute—whether by implementing APIs within operators, connecting exposure platforms, integrating their own portals, or adapting products to fit into this growing ecosystem.

Explore how OSS transforms the telco industry and how to be part of this collaborative movement!

Speakers

Markus Kummerle

Program Manager Deutsche Telekom API Exposure, Deutsche Telekom

Markus Kümmerle is responsible for the 5G Network Exposure Program at Deutsche Telekom. Since 2014 Markus has been responsible for Quality for the System Integration / Digital Solutions unit of T-Systems. In parallel, he continues driving large projects and programs. In 2020 he took... Read More →

Wednesday June 25, 2025 11:20am - 11:40am MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Beginner

11:55am MDT

From Classroom To Cloud: Bridging Academia and the Open Source Ecosystem - Andy Anderson, IBM Research & Professor Corey Leong, Valencia College

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3H

This session introduces **Interns for Open Source (IFOS)**, a program that offers undergraduate and graduate Computer and Information Sciences students hands-on experience with open source projects for academic credit. Over 10 weeks, students bridge classroom learning and real-world application by contributing through issue tracking and pull requests. Their fresh perspectives provide open source communities with valuable feedback, usability insights, and rigorous testing. Students sharpen technical skills, learn professional workflows, and build portfolios. Open source projects benefit from innovative ideas and unbiased input. Attendees will learn about the program structure, its benefits for students and open source communities, and how to get involved.

Speakers

Corey Leong

Professor Cloud Computing, Valencia College

Prior to teaching, I worked in the IT industry for 25 years. I currently teach cloud computing courses, oversee open source mentorships and cloud internships.

Andy Anderson

Software Architect, IBM Research

Andy is an experienced software architect with a strong track record of leading research and engineering teams on hybrid cloud and Kubernetes-based platform development. He has a wealth of experience in software development, cloud computing, and data analysis. Andy is particularly... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

11:55am MDT

Fast Inference, Furious Scaling: Leveraging VLLM With KServe - Rafael Vasquez, IBM

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 3E

In this talk, we will introduce two open-source projects vLLM and KServe and explain how they can be integrated to leverage better performance and scalability for LLMs in production. The session will include a demo showcasing their integration.

vLLM is a high-performance library specifically designed for LLM inference and serving, offering cutting-edge throughput and efficiency through techniques such as PagedAttention, continuous batching, and optimized CUDA kernels, making it ideal for production environments that demand fast, large-scale LLM serving.

KServe is a Kubernetes-based platform designed for scalable model deployment. It provides robust features for managing AI models in production, including autoscaling, monitoring, and model versioning.

By combining vLLM's inference optimizations with KServe's scalability, organizations can deploy LLMs effectively in production environments, ensuring fast, low-latency inference and seamless scaling across cloud platforms.

Speakers

Rafael Vasquez

Open Source Software Developer, IBM

Rafael Vasquez is a software developer on the Open Technology team at IBM. He previously completed an MASc. working on self-driving car research and transitioned from a data scientist role in the retail field to his current role where he continues to grow his passion for MLOps and... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 3E

Open AI + Data

Audience Experience Level Beginner

11:55am MDT

Open Source Software: Hollywood’s Secret Sauce for Visual Effects and Animation - David Morin, Academy Software Foundation

Wednesday June 25, 2025 11:55am - 12:35pm MDT

Bluebird Ballroom 2E

Open source software is the basis for the tools used to create almost all visual effects and animation used in the motion picture industry today, providing the backbone for creating blockbuster films like The Wild Robot, Moana 2, Dune, Oppenheimer, the Star Wars movies and all of the Marvel Cinematic Universe films.

The most important open source projects that are used on almost every film production today are housed at the Academy Software Foundation (ASWF), which provides a neutral forum for open source software developers in the motion picture and broader media industries to share resources and collaborate on technologies for image creation, visual effects, animation and sound.

The Foundation has flourished since its launch in 2018, hosting 14 projects and supporting a growing ecosystem of open source engineers. During this session, David Morin, Executive Director of the Academy Software Foundation, will share more about the Foundation’s growth over the last six years, including new open source projects, engineering events such as Dev Days, and D&I initiatives including the Summer Learning Program.

Speakers

David Morin

Executive Director, Academy Software Foundation, Academy Software Foundation

David Morin is Executive Director of the Academy Software Foundation. He has participated in the development of motion capture and 3D software since “Jurassic Park” at companies such as Softimage, Microsoft, Avid Technology, Autodesk and Epic Games. David is also chair of the... Read More →

Wednesday June 25, 2025 11:55am - 12:35pm MDT
Bluebird Ballroom 2E

Wildcard

Audience Experience Level Beginner

2:10pm MDT

Billy and Eddie's Declassified Git Survival Guide - Billy Lynch, Chainguard & Eddie Zaneski, Defense Unicorns

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3A

Have you ever botched your git repo so badly that you needed to delete it and reclone it? You're not alone!

This talk dives into the dark side of Git - exploring common disasters like accidental force-pushes, tangled merge conflicts, unrelenting rebases, and the dreaded detached HEAD. We'll look at how and why these situations arise, exploring the underlying Git mechanics that got us into the situation and how we can undo or resolve these problems.

You'll come away from this talk with a greater understanding of Git internals, and the knowledge and tools necessary to rescue yourself from any Git workflow gone awry!

Speakers

Billy Lynch

Staff Software Engineer, Chainguard

Billy is a staff software engineer at Chainguard, working on developer tools and securing software supply chains for everyone! He is a contributor and maintainer to the Sigstore, Tekton, and gittuf projects, and is the creator of gitsign. Prior to working at Chainguard, Billy worked... Read More →

Eddie Zaneski

Technical Advisor to the CTO, Defense Unicorns

Eddie lives in Denver, CO with his wife and dog. He loves open source and works on the Kubernetes project. When not hacking on random things you'll most likely find him climbing rocks somewhere.

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

2:10pm MDT

From Wait Times To Real-Time: Empowering DPI for Seamless Citizen Engagements With GenAI Agents - Alex Coqueiro, AWS

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 3G

In this session, I will explore how Generative AI agents are becoming a cornerstone of Digital Public Infrastructure (DPI) using open source, reshaping citizen services and empowering governments to deliver more efficient, responsive, and accessible public services. Learn how Generative AI Agents are revolutionizing government websites, offering 24/7 citizen support, and providing real-time assistance across a wide range of public services. With the ability to handle inquiries, process data, and generate personalized responses, these AI agents significantly reduce wait times and streamline interactions, ensuring faster and more seamless communication between citizens and government agencies. We’ll dive into practical applications, from simplifying bureaucracy to enhancing transparency and accountability, and discuss the transformative potential of Generative AI in creating smarter, more inclusive government channels.

Speakers

Alex Coqueiro

Head of Solutions Architecture at AWS, AWS

I oversee the Solutions Architects Team. My responsibilities encompass serving as the technical strategist, effectively guiding and influencing customers in Government, Education, Healthcare, and Non-profit sectors on a day-to-day basis through direct and indirect interactions. I... Read More →

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Beginner

2:10pm MDT

We Need a Standard for Open Source Package Requirements - Elitsa Bankova & Eve Martin-Jones, Google

Wednesday June 25, 2025 2:10pm - 2:50pm MDT

Bluebird Ballroom 2F

What does a version specification look like? Most would say that one looks something like “1.2.3”.

But what does a requirement look like? That is a more complicated question and answers vary and depend on which packaging ecosystem —Maven, Cargo, PyPI and so on— is involved.

While Semver 2.0 offers a generally agreed upon syntax for versions, there is no standard for requirements.

Understanding how requirements work is required for addressing issues such as vulnerabilities and license conflicts. The absence of an agreed-upon requirement specification limits the ability to understand the problem and limits the sharing of tooling across ecosystems.

Deps.dev has looked at the way requirements are specified in five ecosystems and translated them into a single set representation that enables unified tooling. We’ve discovered many ecosystem-specific quirks, but also discovered much commonality we can build upon.

This talk will define the essence of requirements, demonstrate how they are incompletely met by various existing systems, and most importantly we will argue that a well-defined, well-supported requirement specification is vital to the industry.

Speakers

Eve Martin-Jones

Senior Software Engineer, Google

Eve is an engineer working on open source software security at Google. She lives in Australia, with her cat Mochi, who is surprisingly proficient at JavaScript. Between D&D campaigns, she can be found deciphering the Cargo dependency-resolution algorithm bug-for-bug, advocating for... Read More →

Elitsa Bankova

Software Engineer, Google

Elitsa is a Software engineer at Google, Australia and is working on Open Source security. She has lived in over 4 countries: born in Bulgaria, she graduated from the University of Edinburgh and worked in Google Switzerland before moving down under. Outside of work, you can find her... Read More →

Wednesday June 25, 2025 2:10pm - 2:50pm MDT
Bluebird Ballroom 2F

Standards + Specifications

Audience Experience Level Beginner

2:10pm MDT

Tutorial: Understanding the Carbon Impact of Your Machine Learning Applications - Neeraj Pandey, Vivid Climate & Priyanshi Arora

Wednesday June 25, 2025 2:10pm - 3:45pm MDT

Bluebird Ballroom 3F

This session will guide attendees through the process of understanding and mitigating the carbon emissions of machine learning models and AI systems. We'll delve into methods for measuring the environmental impact of these technologies and discuss the pivotal role developers play in pioneering eco-conscious computing. Participants will gain insights into optimizing algorithms, adopting sustainable coding practices, and choosing energy-efficient tools to minimize the carbon footprint of their machine learning projects.

Additionally, we'll examine the environmental considerations of deploying AI systems in the cloud. As cloud computing becomes integral to deploying AI solutions, understanding its ecological impacts is crucial. We'll cover strategies for making environmentally responsible decisions when selecting and utilizing cloud services, aiming to maintain the eco-friendliness of AI applications.

Together, we'll explore how to balance the demands of advanced computational technologies with the urgent need for sustainability.

Speakers

Neeraj Pandey

Co-Founder, Vivid Climate

Neeraj is the co-founder of Vivid Climate, a climate management and accounting platform. Neeraj is a polyglot. Over the years, he has worked on a variety of full-stack software and data-science applications, as well as computational arts, and likes the challenge of creating new tools... Read More →

Priyanshi Arora

Brand Data Analyst

Priyanshi is a brand data analyst and creative artist.

Wednesday June 25, 2025 2:10pm - 3:45pm MDT
Bluebird Ballroom 3F

Open AI + Data

Audience Experience Level Beginner

3:05pm MDT

Newcomer… but Not New - Emily Shaffer & Ivan Frade, Google

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3H

Most of the advice around new contributor experience is oriented towards developers at the beginning of their career - students or those breaking into the tech industry. This time, though, we want to talk about the basics of contribution for senior developers who already have plenty of industry experience. These potential contributors have more than enough technical expertise, but still struggle to participate in open source. For them the barriers tend to be more social and “communicational” than technical, as their previous incentives, goals, and development cultures are fairly different from those present in most open source communities.

As open source contributors working in a big company, we watch our colleagues face these issues. We want to share our experience and what we learned while trying to help these colleagues participate in open source development for the first time.

Speakers

Emily Shaffer

Staff Software Engineer, Google

Emily Shaffer is a staff software engineer at Google working on Git and other source-control-related open source projects; once upon a time, she comaintained OpenBMC's IPMI stack. She's passionate about software best practices, regular expressions, and her dog, Crash Override.

Ivan Frade

Software Engineer, Google

Long time ago, I installed linux out of curiosity. That led to hobby contributions, which grew into work in the GNOME desktop (via maemo, nokia's flavor for mobile devices), which eventually, after a few other adventures, brought me to Google. Here I work on the git hosting, contributing... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3H

Equity + Inclusion + Accessibility

Audience Experience Level Beginner

3:05pm MDT

Open Collaboration in Action: How We Build RISC-V - Rafael Sene, The Linux Foundation | RISC-V International

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3A

Discover the power of open collaboration with this behind-the-scenes journey into the creation of RISC-V. This session unveils how a global community of engineers, researchers, and innovators work together to design and refine the RISC-V instruction set architecture, bringing open-source principles to silicon. From the challenges of aligning diverse contributions to the triumphs of groundbreaking breakthroughs, you'll learn how the RISC-V ecosystem fosters creativity, accelerates innovation, and democratizes hardware development. Whether you're a seasoned developer or new to hardware design, this talk will inspire you to join the movement redefining the future of computing. Don’t miss this opportunity to see open collaboration in action and learn how you can contribute to shaping the RISC-V revolution!

Speakers

Rafael Sene

Technical Program Manager, The Linux Foundation | RISC-V International

Rafael Peria de Sene is a Technical Program Manager at the Linux Foundation and RISC-V International with over 15 years of experience in software engineering and technical leadership. He has played a key role in expanding the RISC-V ecosystem globally, particularly in Latin America... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

3:05pm MDT

Building Trust Through Proactive Security - Key Parts of the Trusted Software Supply Chain - Przemyslaw Roguski & Ralph Bean, Red Hat

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 3G

As security concerns continue to grow in the software industry, customers seek assurance that the software they rely on is built securely. While applying security patches is essential, it is equally important to understand the proactive measures taken throughout the development process to ensure that our software is built securely.

Red Hat follows a comprehensive Secure Software Development Lifecycle (SDLC) framework to improve software security during the entire software lifecycle. We use an open source end-to-end build and release environment, which uses SLSA framework as a guide for reinforcing and gating the build process to secure and fortify your software supply chain against various threats.

This session will include:
- The key difference between proactive and reactive security measures.
- SDLC objectives and how Red Hat achieves them to meet high security standards.
- Overview of how automated testing and open-source solutions enhance SDLC.
- Proactive vulnerability management during the build lifecycle phase.
- Secure software building with attestation data production, including CSAF/VEX and SBOM.
- Future of AI testing within the software supply chain security.

Speakers

Przemyslaw Roguski

Principal Product Security Engineer, Red Hat

Przemysław “Rogue” Roguski is a Security Architect at Red Hat who specializes in shift-left security initiatives included in build and release processes. He is focused on the security data improvements, especially security data usability in the vulnerability management and production... Read More →

Ralph Bean

Senior Principal Software Engineer, Red Hat

Ralph is an engineer at Red Hat and member of the Konflux Governance Committee. He's happiest when learning new things, the open source way.

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 3G

OpenGovCon

Audience Experience Level Beginner

3:05pm MDT

Towards a Better Adoption Model - Nigel Brown, AWS

Wednesday June 25, 2025 3:05pm - 3:45pm MDT

Bluebird Ballroom 2E

The Linux Foundation has hundreds of projects under its auspices all working to gain adoption — especially in the case of forks like OpenBao and Valkey. In this struggle for adoption, projects could be doing more in support of our common goal. This talk proposes a system by which projects can work together, integrate each other, and increase cohesion between projects under a common foundation. This talk will serve as the opening of a discussion meant to engage both the participants and maintainers of projects and Linux Foundation community members.

Speakers

Nigel Brown

Senior OSS Developer Advocate, Valkey, AWS

Nigel is a Senior Developer Advocate based in Austin, Texas. He was drawn to the craft of software engineering because of the agency it provides people to build and interact with worlds of their own creation. He focuses on Cloud Native technologies and his passions in technology are... Read More →

Wednesday June 25, 2025 3:05pm - 3:45pm MDT
Bluebird Ballroom 2E

Wildcard, Open Source Leadership

Audience Experience Level Beginner

4:20pm MDT

Accelerating GenAI Innovation: Lessons From Intuit's Agents and Tools Framework - Shradha Ambekar & Conrad De Peuter, Intuit

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3F

Join us to discover how Intuit's GenAI framework is reshaping AI development, enabling swift integration of AI functions across varied business units. We'll focus on a robust framework of reusable agents and tools derived from open-source technologies like LangChain/LangGraph, facilitating diverse functionalities from simple data retrieval to complex processes such as query generation, optimization, pipeline creation and debugging. This framework dramatically reduces the time required for data workers to operationalize data pipelines and supports diverse customer interactions through notebooks, no-code approaches, REST integrations, and Python libraries, catering to a wide range of needs including agent developers and teams in pre-production settings. Our meticulous evaluation process ensures that each tool and agent is rigorously tested against high-performance benchmarks to guarantee reliability and consistency before deployment. By centralizing these AI components, Intuit has not only accelerated development timelines but also upheld a high standard of quality, establishing a benchmark for crafting scalable, effective AI solutions in the dynamically evolving tech landscape.

Speakers

Conrad De Peuter

Senior Staff AI Scientist, Intuit

Conrad De Peuter is a Senior Staff AI Scientist and Manager at Intuit. He has worked on deep learning models in the document understanding space, delivering reusable AI services from a central platform, and most recently as the lead for a portfolio of product-focused R&D projects... Read More →

Shradha Ambekar

Senior Staff Software Engineer, Intuit

Shradha Ambekar is a senior staff software engineer with the Data Platform Group at Intuit. She is an experienced technologist and has led projects working with GENAI, Spark, Kafka, Presto, Athena, Cassandra and Vertica. She has made numerous open-source contributions to presto, calcite... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3F

Open AI + Data

Audience Experience Level Beginner

4:20pm MDT

Open Source and CVE's: A Love Story? - Marcus Tenorio, ControlPlane

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3A

When we think of Open Source and CVEs, only bad things come to mind—problems and headaches.

But what if I told you that’s not the case? That, in fact, OSS and CVEs form one of the greatest love stories humanity has ever known. Forget Romeo and Juliet; think Log4J and other "love tales" .

In this talk, we’ll explore how, like every beautiful love story, there are villains, triumphs, and a vibrant community behind it all.

Join us for this fairy tale where we uncover why OSS and CVEs have always been in love with each other.

Speakers

Marcus Tenorio

Engineering Manager, ControlPlane

Mart is an engineering manager at ControlPlane, where he enjoys managing various consultants who teach him every day how to break things and become a better manager and engineer. Mart began his journey in cybersecurity trying to understand why so many people liked prime numbers... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3A

Open Source 101

Audience Experience Level Beginner

4:20pm MDT

How To Stay Compliant With and Take Benefits From the EU CRA (Cyber Resilience Act) - Roman Zhukov, Red Hat

Wednesday June 25, 2025 4:20pm - 5:00pm MDT

Bluebird Ballroom 3D

The EU Cyber Resilience Act (CRA) aims to safeguard European consumers and at first glance it targets only the EU market. But in fact the entire OSS ecosystem falls under its scope as CRA creates mandatory cybersecurity requirements for vendors, distributors, integrators, even enterprise consumers and, in fact, the entire open-source ecosystem by introducing terms like “Manufacturer”, “Steward”, “Individual developer” among others. So, how to ensure **you** stay compliant?

I’ll cover what we, as part of the various working and regulatory expert groups, are doing to help the entire open-source community navigate the actual requirements. We’ll explore how these roles are played together by the leading industry players (yes, revealing some non-trivial scenarios) and what best practices and tools can be used right away for your organization or by you as an individual contributor. Finally, let’s discuss how we together should turn CRA into an opportunity to make open-source better for all.

Speakers

Roman Zhukov

Principal Security Community Architect, Red Hat

Practicing Cybersecurity expert, engineer and manager (15+ years), (ISC)2 CC (Certified in Cybersecurity). Currently - Principal Security & Community Architect at Red Hat. Ex. - Head of Product Security & Privacy for Data Center & AI SW at Intel. Roman has broad experience from security... Read More →

Wednesday June 25, 2025 4:20pm - 5:00pm MDT
Bluebird Ballroom 3D

Operations Management

Audience Experience Level Beginner