Upgrade to Pro — share decks privately, control downloads, hide ads and more …

FindyにおけるTakumi活用と脆弱性管理のこれから

Sponsored · SiteGround - Reliable hosting with speed, security, and support you can count on.
Avatar for adachi.ryo adachi.ryo
September 02, 2025
Programming
0
3k

 FindyにおけるTakumi活用と脆弱性管理のこれから

https://flatt.connpass.com/event/365208/

Product Security Square #1 | GMO Flatt Securityのスライドです

Avatar for adachi.ryo

adachi.ryo

September 02, 2025
Tweet

More Decks by adachi.ryo

See All by adachi.ryo
横断SREがSRE社内留学制度 / Enablingになぜ踏み切ったのか
Avatar for adachi.ryo rvirus0817
0
340
SREチームをどう作り、どう育てるか ― Findy横断SREのマネジメント
Avatar for adachi.ryo rvirus0817
0
1.4k
ファインディの横断SREがTakumi byGMOと取り組む、セキュリティと開発スピードの両立
Avatar for adachi.ryo rvirus0817
1
2.4k
Findy Team+のSOC2取得までの道のり
Avatar for adachi.ryo rvirus0817
0
2.5k
技術的負債で信頼性が限界だったWordPress運用をShifterで完全復活させた話
Avatar for adachi.ryo rvirus0817
1
5.5k
Amazon Security Lakeを活用したセキュリティログの集約とAIによる可視化の最前線
Avatar for adachi.ryo rvirus0817
0
330
TechBull Membersの開発進捗どうですか!?
Avatar for adachi.ryo rvirus0817
0
1.8k
クラウド脆弱性の傾向とShisho Cloudの活用
Avatar for adachi.ryo rvirus0817
0
280
TechBullエンジニアコミュニティの取り組みについて
Avatar for adachi.ryo rvirus0817
0
1.2k

Other Decks in Programming

See All in Programming
Codexに役割を持たせる 他のAIエージェントと組み合わせる実務Tips
Avatar for o8n o8n
0
200
Claude Codeセッション現状確認 2026福岡 / fukuoka-aicoding-00-beacon
Avatar for monochromegane monochromegane
4
390
CSC307 Lecture 12
Avatar for Javier Gonzalez-Sanchez javiergs
PRO
0
460
AIコーディングの理想と現実 2026 | AI Coding: Expectations vs. Reality 2026
Avatar for Tomohisa Takaoka tomohisa
0
1k
JPUG勉強会 OSSデータベースの内部構造を理解しよう
Avatar for Atsushi Ogawa oga5
2
230
Railsの気持ちを考えながらコントローラとビューを整頓する/tidying-rails-controllers-and-views-as-rails-think
Avatar for MOROHASHI Kyosuke moro
4
370
文字コードの話
Avatar for Masaki Hara qnighy
43
17k
CopilotKit + AG-UIを学ぶ
Avatar for NearMeの技術発表資料です nearme_tech
PRO
1
130
DevinとClaude Code、SREの現場で使い倒してみた件
Avatar for karia/Y.Hisamatsu karia
1
920
AIプロダクト時代のQAエンジニアに求められること
Avatar for imtnd imtnd
2
700
AHC061解説
Avatar for Shun_PI shun_pi
0
320
エージェント開発初心者の僕が エージェントを作った話と今後やりたいこと
Avatar for ta-hasunuma thasu0123
0
230

Featured

See All Featured
Statistics for Hackers
Avatar for Jake VanderPlas jakevdp
799
230k
Noah Learner - AI + Me: how we built a GSC Bulk Export data pipeline
Avatar for Tech SEO Connect techseoconnect
PRO
0
130
Large-scale JavaScript Application Architecture
Avatar for Addy Osmani addyosmani
515
110k
JAMstack: Web Apps at Ludicrous Speed - All Things Open 2022
Avatar for David Neal reverentgeek
1
380
Balancing Empowerment & Direction
Avatar for Lara Hogan lara
5
930
BBQ
Avatar for Matthew Crist matthewcrist
89
10k
Practical Orchestrator
Avatar for Shlomi Noach shlominoach
191
11k
Dealing with People You Can't Stand - Big Design 2015
Avatar for Cassini Nazir cassininazir
367
27k
The SEO identity crisis: Don't let AI make you average
Avatar for Varn varn
0
400
Design of three-dimensional binary manipulators for pick-and-place task avoiding obstacles (IECON2024)
Avatar for konakalab konakalab
0
370
Efficient Content Optimization with Google Search Console & Apps Script
Avatar for Katarina Dahlin katarinadahlin
PRO
1
360
Building Better People: How to give real-time feedback that sticks.
Avatar for Will Jessup wjessup
370
20k

Transcript

  1. 'JOEZʹ͓͚Δ5BLVNJ׆༻ͱ ੬ऑੑ؅ཧͷ͜Ε͔Β 1SPEVDU4FDVSJUZ4RVBSFc(.0'MBUU4FDVSJUZ ҆ୡྋ !BEBDIJO

  2. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  3. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  4. 4 ࣗݾ঺հ ҆ୡྋ !BEBDIJO  ܳྺ೥໨  ɾϑΝΠϯσΟ ג $50ࣨϓϥοτϑΥʔϜ։ൃνʔϜ4FOJPS43&

    ɾ1PSUGPMJPBEBDIJONF#MPHCMPHBEBDIJONFXJLJBEBDIJONF  ɾ5FDI#VMM δϡχΞΤϯδχΞίϛϡχςΟ 'PVOEFS प೥🎉  ɹɾ43&ΤϯδχΞͷϝϯλϦϯάྦྷܭ໊ˢ ɹɾ4MBDLࢀՃऀ਺͸໊Ҏ্ˢ ɹɾίϛϡχςΟϚωʔδϟʔ-5ΠϕϯτӡӦ.FNCFST։ൃ ɾ5&$)803-%Ͱ43&ؔ࿈ͷಈըΛൃ৴த

  5. 5

  6. (.0'MBUU4FDVSJUZ͞Μʂ͍ͭ΋ײँʂ 6

  7. "844VNNJU+BQBOͰ΋ηΩϡϦςΟϩάʹ͍ͭͯొஃ 7

  8. 'JOEZ5FBN 40$5ZQFΛࠓ೥ͷ݄ʹऔಘ 8

  9. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  10. 'JOEZ1MBUGPSN43&5FBNͷ໾ׂ 10 • 1MBUGPSN43&νʔϜ • ೥ൃ଍͠ɺνʔϜ͸໊ • શαʔϏεͷԣஅ • ೥ʹϏδϣϯΛ࠶ఆٛ

    • ͭΛఆٛ • ϚΠϯυηοτ • ࢪࡦ • αϙʔτ • αʔϏε͝ͱʹ୲౰ϝϯόʔ͕ࢧԉ • ϛογϣϯ΋ࠓظ൒ظ͝ͱʹݴޠԽ • λεΫϚωδϝϯτ΋ࣗΒ؅ཧ͢ΔΑ͏ʹ

  11. 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ 11 • ݸਓ৘ใͷอޢ • εΩϧɾ৬ྺɾࢤ޲ੑ • બߟεςʔλε • ԠืཤྺͳͲͷ΍ΓͱΓ

    • اۀσʔλͷػີੑ • ٻਓ৘ใɺٻ৬ऀɺاۀ৘ใ • αʔϏεͷܧଓੑ • ߈ܸ΍ো֐ʹڧ͍ج൫ͱՄࢹԽ • ࣾձత੹೚ • ϢʔβʔମݧΛࢧ͑Δ͚ͩͰͳ͘ ۀքશମͷ҆৺ײʹ΋ܨ͕Δ

  12. 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ 12 • "84 • $41. • 4IJTIP$MPVE  

    • 4FDVSJUZ-PH • ηΩϡϦςΟϩάج൫ • "NB[PO4FDVSJUZ-BLF   • 8"'ɺ$MPVE5SBJMɺFUD • ΞϓϦέʔγϣϯϑϩϯτΤϯυ੬ऑੑ • όʔδϣϯΞοϓ • ఆظతʹखಈ੬ऑੑґཔ

  13. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  14. 5BLVNJͷಋೖޮՌ • 'JOEZ • 'JOEZ5FBN ɺ'JOEZ5PPMTɺ'JOEZ*%ʹಋೖ • ։ൃεϐʔυ͕ඇৗʹૣ͍ • ৽αʔϏε͕૿͑Δεϐʔυʹൺ΂ͯɺ

    ηΩϡϦςΟ਍அͷΩϟύγςΟ͕՝୊ • 5BLVNJ • ఆظࣗಈ਍அ • εϐʔυରԠ • ܧଓੑͱൈ͚࿙Ε๷ࢭ • ඪ४Խ͞ΕͨϨϙʔτ • ·ΔͰηΩϡϦςΟΤϯδχΞ͔ͷΑ͏ • 43&΋ରԠՄೳʹ • ਓґଘͷεϙοτ࡞ۀ͔Β"*Ͱܧଓతͳ࢓૊Έ΁ 14

  15. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  16. 5BLVNJͰؾʹͳͬͨ͜ͱ • Ϩϙʔτͷ׆༻ੑ • ग़ྗ݁Ռ͕8FCʹ࿈ಈ͓ͯ͠Βͣɺ։ൃऀ͕೔ৗతʹࢀরͮ͠Β͍ • ϥΠϒϥϦ੬ऑੑͷΧόʔෆ଍ • ࢖༻தͷ044ϥΠϒϥϦ΍ґଘؔ܎ͷ੬ऑੑݕ஌͕े෼Ͱ͸ͳ͘ɺผ్֬ೝ͕ඞཁ •

    ϫʔΫϑϩʔ΁ͷ౷߹ෆ଍ • (JU)VC*TTVF΍1VMM3FRVFTU΁ͷࣗಈىථ͕ͳ͘ɺλεΫԽ͕खؒʹͳΔ • ৘ใཻ౓ͷෆ଍ • ੬ऑੑՕॴ͕ϑΝΠϧύε୯ҐͰग़ྗ͞Εͳ͍ ϓϩϯϓτ࣍ୈ  • ίʔυཧղͷෛ୲ • ϓϩδΣΫτͷίʔυϕʔεΛ೺Ѳ͢Δ·Ͱʹ͕͔͔࣌ؒΓɺॳಈ͕஗ΕΔ • $MBVEFNE͕ར༻Ͱ͖Ε͹εϐʔυग़ͤͦ͏ 16

  17. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  18. 5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ 18 • ηΩϡϦςΟΛ࢓૊Έͱͯ͠ճ͢ • 5BLVNJʹΑΔఆظࣗಈ਍அͰɺ੬ऑੑ؅ཧΛܧଓతͳӡ༻ϓϩηε΁ਐԽ • εϐʔυͱ҆৺ͷཱ྆ • ։ൃεϐʔυʹ௥ैͭͭ͠ɺϦεΫΛૣظʹݕ஌ɾରԠ͢Δ͜ͱͰʮ଎͞ʯͱʮ҆શੑʯΛཱ྆

    • ਓͱࣗಈԽͷอ؅ؔ܎ • 5BLVNJ͕ఆظతʹݕ஌Λߦ͏͜ͱͰࣄલʹରԠ͠ɺखಈ਍அͰ࣮֬ʹΧόʔɻ෯޿͍੬ऑੑʹ ରԠ • ଐਓԽ͔Βඪ४Խ΁ • ϨϙʔτܗࣜΛ౷Ұ͠ɺಉ͡඼࣭ͷ਍அ݁ՌΛಘΒΕΔ࢓૊ΈΛཱ֬ • ܧଓతվળͷج൫ • ܏޲෼ੳ΍վળαΠΫϧΛճ͢͜ͱͰʮηΩϡϦςΟΛޙ௥͍ʯ͔ΒʮηΩϡϦςΟͰઌճΓʯ΁

  19. ͋͐͡Μͩ • ࣗݾ঺հ • 'JOEZʹ͓͚ΔηΩϡϦςΟͷ৴པੑͱ໾ׂ • 5BLVNJͷಋೖޮՌ • 5BLVNJͰؾʹͳͬͨ͜ͱ •

    5BLVNJΛ࣠ʹͨ͠ηΩϡϦςΟӡ༻ͷະདྷ૾ • ·ͱΊ

  20. ·ͱΊ 20 ʮ5BLVNJΛ׆༻ͯ͠ਓґଘͷ਍அΛ"*Ͱ࢓૊Έͱͯ͠ճ͢ ηΩϡϦςΟʹਐԽͤ͞ɺ։ൃεϐʔυͱ৴པੑΛཱ͍྆ͯ͘͠ʯ ࠓظதʹશαʔϏεಋೖ͠ɺจԽৢ੒Λ໨ඪʹʂ

  21. ͝ਗ਼ௌ͋Γ͕ͱ͏͍͟͝·ͨ͠ʂ