12 Apr 2018
Ever wonder what happens when you `npm install` something? Follow an odyssey across the wires as our hero client embarks on an adventure to bring you the software that you need, right when you ask for it. After this talk you'll have a better understanding of the course a package takes - helping you understand architecture that works at scale as well as being able to troubleshoot package installation problems.
Recorded on 2018-04-12
Recorded on 2018-04-12
- 1 participant
- 34 minutes
28 Oct 2017
This talk will give an overview of the big changes that came along with the release of version 5 of the npm CLI -- the main package manager for the JavaScript community. Learn about the neat new features, the breaking changes and why they happened, and get a glimpse of the exciting future of JS package management!
Recorded: 2017-10-28
Recorded: 2017-10-28
- 1 participant
- 30 minutes
14 Nov 2015
4 years ago I fell in love with node.js at 0.4 ever since then I’ve been focused on finding ways to 0wn and secure node applications. A lot of that effort was focused around the npm registry where the majority of the code developers produce is shared and consumed.
This talk will be a trip back in time to discuss the mad science research and experiments I’ve done to try and understand the state of node.js security and to try and make the node community and ecosystem a bit more secure.
Hopefully it will leave you with a healthy sense of paranoia and a curiosity for how you can make the code you create and consume more secure.
Recorded on 2015-11-14
This talk will be a trip back in time to discuss the mad science research and experiments I’ve done to try and understand the state of node.js security and to try and make the node community and ecosystem a bit more secure.
Hopefully it will leave you with a healthy sense of paranoia and a curiosity for how you can make the code you create and consume more secure.
Recorded on 2015-11-14
- 1 participant
- 32 minutes
10 Jul 2015
In this talk Adam explores his methodology for finding vulnerabilities in software.
Recorded on 2015-07-10
Recorded on 2015-07-10
- 1 participant
- 26 minutes
26 Feb 2015
A talk about the OWASP top 10 and requiresafe.
Recorded on 2015-02-26
Recorded on 2015-02-26
- 1 participant
- 34 minutes
11 Dec 2014
Developers today realize the importance of thourough tests for their applications. However, most developers only write test cases for the good paths, and perhaps a simple bad path. But what about testing for malicious paths? Bizarrolout is a tool for the Hapi web framework that allows you to automatically fuzz every route and verify what happens when your application is given malicious input.
Recorded: 2014-12-11
Recorded: 2014-12-11
- 1 participant
- 9 minutes
2 Oct 2013
This talk will introduce the nodesecurity.io project, it's goals, current results in hopes of inspiring involvement and receiving feedback directly from the node community!
Recorded on 2013-10-02
Recorded on 2013-10-02
- 1 participant
- 27 minutes
16 May 2013
The node.js community is growing at an amazing rate. At the time of writing there was 27,757 modules publised on npm. Have you ever stopped to think just what you are putting into your project when you npm install somebody else's module? Do you trust that code? This is an insane project to find out the answer to that question.
This talk will introduce the nodesecurity.io project, it's goals, current results in hopes of inspiring involvement and receiving feedback directly from the node community!
Recorded: 2013-05-16
This talk will introduce the nodesecurity.io project, it's goals, current results in hopes of inspiring involvement and receiving feedback directly from the node community!
Recorded: 2013-05-16
- 2 participants
- 17 minutes