In this episode, Katherine Druckman interviews Dotan Horvits, a CNCF ambassador involved in the cloud native and open source community. Dotan shares insights on his passion for DevOps, observability, and his podcast 'Open Observability Talks.' He discusses his recent focus on CI/CD observability within the CNCF realm, the value and challenges of standardizing observability in release pipelines, and the role of AI in future observability improvements. The conversation also touches on the importance of developer experience, the evolving landscape of observability, and upcoming advancements in projects like Jaeger and Prometheus. Dotan emphasizes the importance of open source collaboration and invites listeners to get involved in related communities and projects.

00:00 Introduction 00:29 Dotan's Background and Experience 02:49 Current Projects and Passions 03:05 CI/CD Observability and OpenTelemetry 08:06 Developer Experience and Productivity 13:49 The Impact of AI on Observability 20:48 Future of Observability and Industry Trends

In this episode, we have an insightful discussion with Carol Chen from Red Hat at the All Things Open conference. Carol, who works in the Open Source Program Office at Red Hat, shares her experiences and insights on her ongoing project, InstructLab, a collaboration with IBM aimed at applying open source methods to building and training large language models. The conversation covers the importance of democratizing AI, reducing the fear and misconceptions surrounding AI technology, and making AI tools and concepts more accessible and understandable for everyone, including those who are not tech-savvy. Carol also discusses the social responsibility associated with AI development, emphasizing the need for transparency and community collaboration.

00:00 Introduction and Welcome 00:17 Carol's Background and Role at Red Hat 01:00 AI and Open Source 03:13 Challenges and Opportunities in AI 06:43 InstructLab: Making AI Accessible 12:09 Personal Journey into AI 15:37 AI Ethics and Open Source

Carol Chen is a Community Architect at Red Hat, supporting and promoting various upstream communities such as InstructLab, Ansible and ManageIQ. She has been actively involved in open source communities while working for Jolla and Nokia previously. In addition, she also has experiences in software development/integration in her 12 years in the mobile industry. Carol has spoken at events around the world, including DevConf.CZ in Czech Republic and OpenInfra Summit in China. On a personal note, Carol plays the Timpani in an orchestra in Tampere, Finland, where she now calls home.

• W3C SWAG Group: https://www.w3.org/community/swag/ - and GitHub repo https://github.com/w3c-cg/swag with meeting minutes
• Last year's W3C / OpenSSF/ OWASP / OpenJS "Secure the Web Forward" workshop: https://www.w3.org/2023/03/secure-the-web-forward/ (includes videos of all talks and workshop report)
• W3C Ethical Web Principles https://www.w3.org/TR/ethical-web-principles/
• W3C Privacy Principles https://www.w3.org/TR/privacy-principles/
• W3C Security & Privacy self-check https://www.w3.org/TR/security-privacy-questionnaire/

In this episode, we welcomed back Christopher Robinson, aka CRob, to discuss his extensive work in the Open Source Security Foundation (OpenSSF). We chatted about the importance of open source software security, detailing the various initiatives aimed at improving security standards. CRob shares insights into the working groups and projects within OpenSSF, focusing on their efforts to educate developers and security researchers. We also touched on the upcoming SOSS Fusion event, and its role in fostering community engagement and collaboration in open source security. We encourage listeners to join these endeavors and contribute to solving significant security challenges.

00:00 Welcome Back, CRob! 00:52 Diving into Open Source Security 01:20 Understanding the OpenSSF 04:18 Key Personas in Open Source Security 09:44 Educational Resources for Developers 12:17 Getting Involved with OpenSSF Projects 15:27 Upcoming Event: SOSS Fusion 17:47 The Value of Open Source Events 21:48 Final Thoughts and Future Plans

OpenSSF

SOSS Fusion

Christopher Robinson (aka CRob) is the Director of Security Communications at Intel Product Assurance and Security. CRob is a 41st level Dungeon Master and a 24th level Securityologist. He has worked at several Fortune 500 companies with experience in the Financial, Medical, Legal, and Manufacturing verticals, and spent 6 years helping lead the Red Hat Product Security team as their Program Architect.

CRob has been a featured speaker at Gartner’s Identity and Access Management Summit, RSA, BlackHat, DefCon, Derbycon, the (ISC)2 World Congress, and was named a "Top Presenter" for the 2017 and 2018 Red Hat Summits. CRob was the President of the Cleveland (ISC)2 Chapter, and is also a children's Cybersecurity Educator with the (ISC)2 Safe-and-Secure program. He holds a Certified Information Systems Security Professional (CISSP) certification, Certified Secure Software Lifecycle Professional (CSSLP) certification, and The Open Group Architecture Framework (TOGAF) certification. He is heavily involved in the Forum for Incident Response and Security Teams (FIRST) PSIRT SIG, collaborating in writing the FIRST PSIRT Services Framework, as well as the PSIRT Maturity Assessment framework. CRob is also the lead/facilitator of the Open Source Security Foundation (OpenSSF) Vulnerability Disclosures and OSS Developer Best Practices working groups as well as a Technical Advisory Committee (TAC) member.

He enjoys hats, herding cats, and moonlit walks on the beach.

Katherine Druckman talks to fellow Intel Open Source Evangelist Ezequiel Lanza about building and deploying AI applications using Retrieval Augmented Generation. We break down RAG concepts and processes involved in providing additional context to general AI models for specialized use cases.

Guest:

Katherine speaks with Demetris Cheatham, the Chief of Staff to the CEO of GitHub, about her unique perspective on the open source landscape. The discussion covers her experiences in various sectors and the impactful 'All In' project created to elevate developers from underrepresented backgrounds. They highlight the significance of community, the power of relationships, and the pivotal role of natural language and AI in making coding more accessible globally. The talk also addresses critical challenges like the digital divide, funding for diversity programs, and the importance of evolving diversity, equity, and inclusion efforts in tech.

00:00 Introduction 00:26 Connecting Through Open Source 02:02 Role and Responsibilities at GitHub 05:06 Diversity and Inclusion Initiatives 09:16 Challenges in Computer Science Education 12:51 Equity and Systemic Change 16:21 The Journey to a Billion Developers 24:07 Building Relationships in Open Source 31:37 Final Thoughts and Takeaways

Ezequiel Lanza and Katherine Druckman from Intel's Open Ecosystem team chat with Daniel Whitenack, founder and CEO of Prediction Guard. They discuss the importance and implementation of guardrails for securing generative AI platforms and cover the operational challenges and security considerations of running AI models, the concept of responsible AI, and practical advice for integrating guardrails into AI workflows. Additionally, the conversation touches on multi-model integrations, open source contributions, and the significance of vendor-neutral frameworks in achieving a secure and efficient AI ecosystem.

00:00 Introduction 01:28 What is Prediction Guard? 03:31 Understanding Guardrails in AI 06:49 Security Risks and Responsible AI 13:30 Open Source and Model Security 19:00 Open Platform for Enterprise AI 20:26 Contributing to Open Source Projects 27:12 Final Thoughts

Guest:

Daniel Whitenack (aka Data Dan) is a Ph.D. trained data scientist and founder of Prediction Guard. He has more than ten years of experience developing and deploying machine learning models at scale, and he has built data teams at two startups and an international NGO with 4000+ staff. Daniel co-hosts the Practical AI podcast, has spoken at conferences around the world (ODSC, Applied Machine Learning Days, O’Reilly AI, QCon AI, GopherCon, KubeCon, and more), and occasionally teaches data science/analytics at Purdue University.