★ The Tour
Pick your stop.
Click your city to see the details and reserve your seat.
★ Spring '26 Run
Anyone Can Patch.
Backporting CVEs with AI. The detect → upgrade → fix model is broken — every upgrade trades a known CVE for unknown regression risk. We'll show you the new model: detect → patch → validate, run live on real packages.
- →Three-prompt workflow: Research, Apply, Validate
- →Live demo on apache-airflow + CVE-2025-68675
- →Bring a CVE your team is sitting on — we'll triage one in the room
Topics rotate each run. Future stops may cover SBOMs, supply chain, or runtime — whatever's worth the conversation.
★ Hosted by
John Amaral
Co-Founder & CTO, Root
"You don't need to upgrade everything to be secure. Apply the right fix in the right place."
Want us in your city next?
Drop your email and the city you'd want us in for the fall '26 run. We'll send the invite the moment we lock the next route.