41 min listen
JSJ 294: Node Security with Adam Baldwin
ratings:
Length:
69 minutes
Released:
Jan 3, 2018
Format:
Podcast episode
Description
Panel:
Charles Max Wood
AJ O’Neal
Joe Eames
Special Guests: Adam Baldwin
In this episode, JavaScript Jabber panelist speak with Adam Baldwin. Adam is a return guest and has many years of application security experience. Currently, Adam runs the Node Security Project/Node Security Platform, and Lift Security. Adam discusses the latest of security of Node Security with Charles and AJ. Discussion topics cover security in other platforms, dependencies, security habits, breaches, tokens, bit rot or digital atrophy, and adding security to your development.
In particular, we dive pretty deep on:
What is the Node Security Project/Node Security Platform
Dependency trees
NPM
Tokens and internal data
What does Node Security do for me?
NPX and NSP
Command Line CIL
Bit Rot or Digital Atrophy
How often should you check repos.
Advisories
If I NPM install?
Circle CI or Travis
NSP Check
What else could I add to the securities?
Incorporate security as you build things
How do you find the vulnerabilities in the NPM packages
Two Factor authentication for NPM
Weak Passwords
OL Dash?
Install Scripts
Favorite Security Story?
And much more!
Links:
Node Security
Lift Security
https://github.com/evilpacket
@nodesecurity
@liftsecurity
@adam_baldwin
Picks:
Adam
Key Base
Have I been Pwned?
Charles
Nettie Pot
convo.com
AJ
This Episode with Adam Baldwin
Free the Future of Radical Price
Made In America Sam Walton
Sonic - VGM Album
Joe
Pych - Movie
NG Conf
Why We Don’t Suck
Special Guest: Adam Baldwin.
Charles Max Wood
AJ O’Neal
Joe Eames
Special Guests: Adam Baldwin
In this episode, JavaScript Jabber panelist speak with Adam Baldwin. Adam is a return guest and has many years of application security experience. Currently, Adam runs the Node Security Project/Node Security Platform, and Lift Security. Adam discusses the latest of security of Node Security with Charles and AJ. Discussion topics cover security in other platforms, dependencies, security habits, breaches, tokens, bit rot or digital atrophy, and adding security to your development.
In particular, we dive pretty deep on:
What is the Node Security Project/Node Security Platform
Dependency trees
NPM
Tokens and internal data
What does Node Security do for me?
NPX and NSP
Command Line CIL
Bit Rot or Digital Atrophy
How often should you check repos.
Advisories
If I NPM install?
Circle CI or Travis
NSP Check
What else could I add to the securities?
Incorporate security as you build things
How do you find the vulnerabilities in the NPM packages
Two Factor authentication for NPM
Weak Passwords
OL Dash?
Install Scripts
Favorite Security Story?
And much more!
Links:
Node Security
Lift Security
https://github.com/evilpacket
@nodesecurity
@liftsecurity
@adam_baldwin
Picks:
Adam
Key Base
Have I been Pwned?
Charles
Nettie Pot
convo.com
AJ
This Episode with Adam Baldwin
Free the Future of Radical Price
Made In America Sam Walton
Sonic - VGM Album
Joe
Pych - Movie
NG Conf
Why We Don’t Suck
Special Guest: Adam Baldwin.
Released:
Jan 3, 2018
Format:
Podcast episode
Titles in the series (100)
Episode 19: 019 JSJ Browserify with James Halliday by JavaScript Jabber