Application Security WeeklySubscribe
Application security, AI benefits/risks, DevOps

Adding Observability with OpenTelemetry – Adriana Villela – ASW #309

Full Audio

View Show Index

Segments

1. Adding Observability with OpenTelemetry – Adriana Villela – ASW #309

Observability is a lot more than just sprinkling printf statements throughout a code base. Adriana Villela explains principles behind logging, traceability, and metrics and how the OpenTelemetry project helps developers gather this useful information. She also provides suggestions on starting logging from scratch, how to avoid information overload, and how engaging users about their experience with solutions like OpenTelemetry makes for better software -- a lesson that appsec teams can apply to paved roads and security guardrails.

Segment Resources:

Guest

Principal Developer Advocate

Adriana Villela is a Principal Developer Advocate based in Toronto, Canada. She helps companies achieve reliability greatness through Observability, SRE, and DevOps practices. Previously, she managed a Platform Engineering team and an Observability Practices team at Tucows. Adriana has worked at various large-scale enterprises, both as an individual contributor and leader, including Bank of Montreal, Ceridian, and Accenture. Adriana is a public speaker, maintainer of the OpenTelemetry End User SIG, blogger, host of the Geeking Out Podcast, CNCF Ambassador (2023-present), and HashiCorp Ambassador (2022-present).

Host

Tech Lead at Block

2. Fuzzing Barcodes, Fuzzing with AI, AI vs. Scammers, CWEs, Repo Swatting – ASW #309

Fuzzing barcodes and getting projects onboarded with fuzzers, using AI to guide fuzzers, using AI to combat scammers, using CWEs for something, using malicious comments to ban repos, and more!

Announcements

  • Want to shape the future of identity? Identiverse 2025 is looking for dynamic speakers like you to share groundbreaking ideas with over 3,000 identity and access management leaders. Join the most influential voices in IAM and help drive innovation in our industry. Submit your presentation proposal today at securityweekly.com/idvcfp

Hosts

Tech Lead at Block
  1. 1. Fuzzing between the lines in popular barcode software | Trail of Bits Blog
  2. 2. Google Online Security Blog: Leveling Up Fuzzing: Finding more vulnerabilities with AI
  3. 3. O2 unveils Daisy, the AI granny wasting scammers’ time – Virgin Media O2
  4. 4. 2024 CWE Top 25 Most Dangerous Software Weaknesses
  5. 5. Let’s Encrypt Stats

    Celebrating 10 years of Let's Encrypt, one of the most successful projects at improving security across the internet.

  6. 6. Repo swatting attack deletes GitHub and GitLab accounts
  7. 7. Qualys Security Advisory – LPEs in needrestart
Principal Researcher at The Defenders Initiative
  1. 1. Artificial Intelligence Infrastructure-as-Code Generator

    Have AI generate IaC? Sure, why not? What could go wrong?

    This is fine.

  2. 2. Australia/Lord_Howe is the weirdest timezone

    Did you know that timezone data is so crazy, MacOS excludes some of it, because it would break/crash code?

    However crazy you think timezone definitions are, it's much, much worse!

Related

You can skip this ad in 5 seconds