Node Summit 2016 – Stranger Danger: Addressing the Security Risk in npm Dependencies
Using open source modules is awesome – but it’s also a security nightmare. Roughly 80% of Node.js apps and 40% of websites use vulnerable libraries. If one of your dependencies proved evil or compromised, would you know? Learn how to mitigate this risk without losing productivity. We’ll expose and exploit real vulnerabilities in a sample app; show how we can fix those issues and stay vulnerability free.
Guy Podjarny, Co-Founder and CEO, Snyk