Liran Tal is an application security activist and long-time proponent of open-source software. He is a member of the Node.js security working group, an OWASP project lead, and author of Essential Node.js Security, and O’Reilly’s Serverless Security. He is leading the developer advocacy team at Snyk, in a mission to empower developers with better dev-first security.
Your Node.js Attack Surface Just Got Bigger
Building applications today mean that we take a step further from writing code and using open-source dependencies to also creating a Dockerfile, deploying containers to the cloud, and orchestrating this infrastructure with Kubernetes. Welcome, you’re a cloud native application developer! As developers, our responsibility broadened, and more software means more software security concerns for us to address. Join Liran for a hands-on Node.js cloud native live-hacking session, to show common threats, vulnerabilities, and misconfigurations. Most importantly, we’ll also show how you can protect your application, through clear remediation actions and best practices for each exploit we demonstrate.