🐍🔐 SPUG x SPOGO: Lock Down Your Code! Securing Repositories & CI/CD Like a Pro

🐍🔐 SPUG x SPOGO: Lock Down Your Code! Securing Repositories & CI/CD Like a Pro

Security isn’t just for the ops team anymore — it’s for every developer who writes code, commits changes, and ships software. 🚀

Join the Spokane Python Users Group (SPUG) and our friends from the Spokane Go Users Group for an engaging evening focused on keeping your code, repositories, and pipelines safe in an increasingly hostile world.

We’ll kick things off with a quick look at recent security vulnerabilities making headlines and what they teach us about modern software development. From supply chain attacks to exposed secrets and compromised dependencies, we’ll break down what’s happening and why it matters to everyday developers.
Then we’ll dive into practical tools and best practices you can start using immediately, including:

• 🔍 SAST (Static Application Security Testing)
• 📦 Dependency and vulnerability scanners
• 🔑 Secret scanning and credential protection
• ⚙️ CI/CD security automation
• 🧰 Pre-commit hooks and developer-friendly safeguards
• 🛡️ Real-world strategies to secure your repos and workflows

Whether you write Python, Go, JavaScript, or anything else, this session will give you actionable ways to shift security left and build safer software from day one.

🤝 What to expect:

• Tech talk and live demos
• Real-world security examples
• Cross-language insights from Python and Go developers
• Community discussion and Q&A
• Networking with Spokane’s growing dev community

Come learn how to lock down your code, protect your pipelines, and sleep better at night knowing your repositories are secure.
All experience levels welcome — from curious beginners to seasoned engineers.

Bring your questions, your war stories, and your security tools to share!