Coursera Spring Sale
40% Off Coursera Plus Annual!
Grab it
Explore how diversity and inclusivity in open source communities directly impact security through this 34-minute conference talk from The Diana Initiative 2025. Learn about the critical connection between community behavior and security vulnerabilities, using the xz package incident as a case study where an isolated maintainer became the target of a sophisticated social engineering attack that exploited normalized harassment patterns in open source environments. Discover data-driven strategies for building welcoming, inclusive communities that strengthen security posture, understand how attackers leverage hostility toward minority developers as attack vectors, and examine why supporting minority-led projects is essential for overall open source security. Gain practical insights from a decade of outreach and open source analysis on fostering trust, transparency, and inclusive environments that protect against social engineering attacks while recognizing that the network effect of open source makes community security everyone's responsibility.
