Marta Rybczynska has a network security background and 20 years of experience in Open Source, including 15 years in embedded development. She has been working with embedded operating systems like Linux and various real-time ones, system libraries, and frameworks up to user interfaces. Her specialties are architecture-specific parts of the Linux kernel. In the past, Marta served as Vice-President and treasurer for KDE e.V. She has been involved in various Open Source projects and contributed kernel-related guest articles for LWN.net. In 2021, she founded Syslinbit, an Open Source consulting company. She has experience with presentations at scientific and free software conferences, including LinuxCon, Open Source Summit, Embedded Linux Conference, Akademy, FOSDEM, and FOSS-north.
Do you have a fix ready for a security issue? Do you know how to submit it to the Yocto Project (YP)? In this hands-on, Marta will show the path from a security issue reported by the YP CVE check do an accepted fix. You will learn about file naming, choosing the right branch, testing your patch and more!
What has happened around security in the Yocto Project in 2023? What is cooking for 2024? If you're using YP in your products, you will be interested to learn about new options and features. Marta will discuss changes in the CVE scanning process, SBOM generation with SPDX, default options, and more.