Open source software underpins today's critical infrastructure across government and industry. But the same openness that enables collaboration also creates risk.

Strider’s latest research uncovers how nation-state actors from China, Russia, Iran, and North Korea are exploiting open source software ecosystems—not by targeting code, but by targeting the people who create and manage it. This session introduces a contributor-centric risk model designed to help organizations identify hidden exposure in their software supply chains.Join cybersecurity leader Matt Stamper and Strider experts Mike Brown and Catherine O’Connor for a focused discussion on:

• How open source code has become a vector for nation-state operations
• What OSS contributor patterns reveal about hidden affiliations
• Why traditional scanning misses key risks in public repositories
• Steps organizations can take to strengthen OSS visibility and trust

Whether you lead security strategy, manage development teams, or shape technology policy, this session offers a new lens on open source risk—beyond the code itself.