search menu icon-carat-right cmu-wordmark

Learn How To (Not) Use Secrets With OWASP Wrong Secrets!

This session was presented by Jeroen Willemsen at DevSecOps Days Washington, D.C., held virtually October 12, 2022.

Software Engineering Institute

Topic or Tag


If you want to bring an app to production, you need to know where to put your secrets and how to access them safely. In this session, we'll go into how to not use secrets with a purposefully vulnerable application. We hope you'll take this knowledge and not make the same mistakes in your own app. Of course, you'll also learn a thing or two on how to do secrets management properly!

Jeroen Willemsen is a Principal Security Architect and a jack of all trades in security. He loves to develop new software, set up DevSecOps support tooling, and help companies with security programs. He enjoys sharing knowledge, which is why he published articles, blogs and gave trainings and talks about various subjects.