I'm Coby Allred, a software engineer in @Microsoft's Open Source Engineering team. We work on making sure that open source usage within Microsoft is secure and compliant while remaining easy to manage for developers in collaboration with @GitHub Advanced Security. I recently started working on Dependabot!
- Maintaining microsoft/component-detection, a dependency scanning tool to determine OSS usage in your source code
- Developing GitHub Advanced Security for Azure DevOps to help organizations quickly respond to vulnerabilities across their software stack
- Automatically updating dependencies via Dependabot