Strap in for a safari ride showcase of different open source security vulnerabilities, misconfigurations, and developer mistakes across the largest collection of source code on the Internet... Github! We will point and laugh (respectfully, of course) at accidental exposed API keys, classic and cliché misconfigurations, and vulnerabilities you might have seen in the 2000's but certainly shouldn't see in 2024! Join security researcher and educator John Hammond for this jolly jaunt through bad code and Git commits intermixed with the tips to build a stronger security culture. Through the playful lens of "what not to do", we'll drive home the importance of open source security and how security teams and developers can work better together.