Sara D. Cope

United States United States

Sara is a lead software engineer at Heroku working on the front-end team. In her off-hours, she is a habitual volunteer and currently works with Dayton Code Together with the hope of inspiring women to level up their coding skills and creating a more welcoming and inclusive experience for women in tech.

Community Contributions

Federal Open Source with Code.gov

Code.gov is the federal government’s primary platform for aggregating Open Source Software. With over 6000 OSS projects made available, Code.gov offers you the opportunity to discover and use thousands of available projects. Join Code.gov director, Joe Castle, and lead engineer, Sara Cope, to learn more about Open Source Software, the Federal Source Code Policy, and updates to the Open Source Pilot Program. This talk will also include a walk-through of the Code.gov platform.
Speaking (conference/usergroups) / 10-10-2019

Speaker, Beefing Up Your Security Brain: Addressing Dependency Vulnerabilities - GemCity JS

What's the best way to secure your open source dependencies? Not have any. But since over 80% of the source code that's shipped is derived from open source that's just not a reality. This makes auditing and managing your dependencies critical to achieving security compliance and instilling confidence in your application. This talk will cover secure dependency management from both a proactive and reactive standpoint. We'll go over monitoring and auditing best practices, take a tour of available tools and walk through how to automate the detection of insecure patterns and outdated libraries affected by known vulnerabilities.
Speaking (conference/usergroups) / 10-01-2019

Practical Open Source Security - Abstractions II Conference

What's the best way to secure your open source dependencies? Not have any. But since over 80% of the source code that's shipped is derived from open source that's just not a reality. This makes auditing and managing your dependencies critical to achieving security compliance and instilling confidence in your application. This talk will cover secure dependency management from both a proactive and reactive standpoint. We'll go over monitoring and auditing best practices, take a tour of available tools and walk through how to automate the detection of insecure patterns and outdated libraries affected by known vulnerabilities.
Speaking (conference/usergroups) / 08-15-2019