Defending JavaScript Projects from Supply Chain Attacks - Running Code from the Internet Safely
Offered By: DevSecCon via YouTube
Course Description
Overview
Explore the proactive defense strategies for JavaScript projects against supply chain attacks in this 27-minute DevSecCon talk. Discover how to limit access to globals for each package, control network and file system access, and prevent prototype pollution. Learn about future JavaScript features being discussed in TC39 and their potential for enhancing project security. Witness live demonstrations of executing actual malware to understand the importance of these protective measures in an era where running code from strangers is commonplace.
Syllabus
I run code from the internet! with Zbyszek Tenerowicz
Taught by
DevSecCon
Related Courses
ECMAScript 6: A Better JavaScript for the Ambient Computing EraChariotSolutions via YouTube The Future of JavaScript
JSConf via YouTube Native BigInts in JavaScript - A Case Study in TC39
JSConf via YouTube How Does the TypeScript Team Try to Avoid Negative Effects on the JS Ecosystem
JavaScript Conferences by GitNation via YouTube Future JavaScript - What Is Still Missing? - Q&A Session
JavaScript Conferences by GitNation via YouTube