Julie Qiu

Closing keynote! #gophercon

Hello gophers! @dmitshur and I (with @bradfitz in spirit) are back at San Diego this year, and we would like to invite you to a #GopherCon run tomorrow morning! Wednesday, 9/27 -- 7am outside the lobby! Meeting spot: twitter.com/dmitshur/statu…

OSV now contains advisories for malicious packages! osv.dev/list?ecosystem… This is sourced from github.com/ossf/malicious…, which contains advisories from GitHub as well as from automated detections from our own malicious package detection system: github.com/ossf/package-a…

@jayconrod 🙌

Finished the San Francisco Marathon!

The final post in our series on Supply Chain Security for Go is up, by @JQiu25 and @metzmanj Learn how native fuzzing support and vulnerability detection in your IDE help you shift left with Go ⬅️ security.googleblog.com/2023/07/supply…

It has been so fun writing these blog posts with @halbecaf @roger2hk and @metzmanj these past few months. Our final post is live! security.googleblog.com/2023/07/supply… We hope our series on Supply Chain Security for Go helped you learn about keeping your Go programs secure 🔐✨ #golang

Go becomes the first language with native vulnerability management support, check out the GA launch for Govulncheck here - go.dev/blog/govulnche…

"Govulncheck v1.0.0 is released!" by @JQiu25 — goo.gle/46QGFrB #golang

Had an unbelievable time @gopherconeu this year! Extra happy that I got to spend some quality time with the extraordinary @NataliePis and @ronnax who play a huge part in making the Go community so special 🥰 #gopherconEU #golang

Had a great time and great conversations at the social @gopherconeu ! With @JQiu25 , Tara #gopherconeu #berlin

✨ Check out the second blog post in our series on Supply chain security for Go, by @JQiu25 and @roger2hk. Learn how Go helps you ensure reproducible builds and download trustworthy dependencies 👇 goo.gle/3NSoWsr

Day 2 started with a BANG! A great talk from @JQiu25 about vulnerability checks for project module dependencies! I’m planning on adding it to my CI pipelines for sure! @gopherconeu #gopherconEU #golang

Day 2 💪 #gopherconEU @gopherconeu

Attending a very interesting talk about vulnerability management in Go at GopherCon✨! #gopherconEU #golang #cybersecurity Thanks @nexuzhealth for this opportunity

The @golang team is answering burning questions at @gopherconeu #golang #gopherconEU

Great start of day 2 by Julie @gopherconeu #golang #gopher

Nice feature of go vulnerability check - exact call stack in your codebase that uses vulnerable dependency. Niceties of static analysis, we won't see them in #Ruby - that's the cost of having a highly dynamic lang. By @JQiu25 at #gopherconEU Cc @maciejmensfeld thats the talk

The vulnerability check tooling presentation from @JQiu25 at #gopherconEU was awesome, I'm sure we'll be using it right away. My favorite bit is the low-noise. Tells you exactly what you need to know!

Check your project's execution path for vulnerabilities now by installing govulncheck (go install @latest" target="_blank" rel="nofollow noopener">golang.org/x/vuln/cmd/gov…) and run govulncheck ./... Nice presentation by @JQiu25 #gopherconEU

Lots of wonderful things from Go team! Thanks @JQiu25! #gopherconEU #golang