Code.gov
Core team member, code.gov.
Sara D. Cope
United States
Sara is a lead software engineer at Heroku working on the front-end team. In her off-hours, she is a habitual volunteer and currently works with Dayton Code Together with the hope of inspiring women to level up their coding skills and creating a more welcoming and inclusive experience for women in tech.
Community Contributions
Digital.gov
Core team member and lead, digital.gov.
Federal Source Code Summit
I spoke on a panel of federal open source maintainers on project outreach and maintenance.
Keynote: Digging Into User Experience At Any Level
I spoke as the day 1 conference keynote about how to use small ux experiments to better connect your product to user needs.
Shaping the Contributor Experience - GitHub Universe
I spoke about conducting user research to test and improve documentation for your open source project.
Federal Open Source with Code.gov
Code.gov is the federal government’s primary platform for aggregating Open Source Software. With over 6000 OSS projects made available, Code.gov offers you the opportunity to discover and use thousands of available projects.
Join Code.gov director, Joe Castle, and lead engineer, Sara Cope, to learn more about Open Source Software, the Federal Source Code Policy, and updates to the Open Source Pilot Program.
This talk will also include a walk-through of the Code.gov platform.
Speaker, Beefing Up Your Security Brain: Addressing Dependency Vulnerabilities - GemCity JS
What's the best way to secure your open source dependencies? Not have any. But since over 80% of the source code that's shipped is derived from open source that's just not a reality. This makes auditing and managing your dependencies critical to achieving security compliance and instilling confidence in your application.
This talk will cover secure dependency management from both a proactive and reactive standpoint. We'll go over monitoring and auditing best practices, take a tour of available tools and walk through how to automate the detection of insecure patterns and outdated libraries affected by known vulnerabilities.
Practical Open Source Security - Abstractions II Conference
What's the best way to secure your open source dependencies? Not have any. But since over 80% of the source code that's shipped is derived from open source that's just not a reality. This makes auditing and managing your dependencies critical to achieving security compliance and instilling confidence in your application.
This talk will cover secure dependency management from both a proactive and reactive standpoint. We'll go over monitoring and auditing best practices, take a tour of available tools and walk through how to automate the detection of insecure patterns and outdated libraries affected by known vulnerabilities.
