I am an Engineering Manager in the Code Orchestration Team at @SonarSource. Before that, I worked for more than six years on the code analyzers that power our awesome products:
- SonarQube Server - on-prem analysis (has a free Community Build edition)
- SonarQube Cloud - SaaS (free for open-source)
- SonarQube for the IDE - IDE plugins, free for everyone 😄
These tools are used by millions of developers and tens of thousands of organizations use to deliver cleaner, more secure code.
Check our awesome community forum.
The resources from my talk on NuGet supply chain attacks are:
- on my blog: https://andreiepure.ro/2022/08/28/dotnetday-resources.html
- on my personal GitHub: https://github.com/andreiepure/DependencyConfusionDemo
Speaker profile: https://sessionize.com/andrei-epure/