< Back to overview< Back to overview
Talk
Registration required!
September 15, 2021
3:30 pm
4:15 pm
(CET)

Oops! Stories of supply chain shenanigans

Powered by
No items found.

About the session

We know a lot about vulnerable packages in NPM registry. But (surprisingly) few malicious packages have surfaced to date. Makes you feel like you don't really need to protect your project against them. Well, I'm here to destroy that cozy feeling >:D

I will demonstrate how a malicious package could affect your application, even if some security measures are already in place. After the exploits, I'll explain how to prevent the attacks without missing out on the benefits of packages using postinstall scripts for valid reasons.

Watch this if you love horror stories!
Watch this if you care about avoiding horror stories!

About the speaker

Zbyszek Tenerowicz
Zbyszek Tenerowicz
meet.js Poland Organizer and Security enthusiast

Watch recording

Watch recording
Registration required!

Save your spot

15 Sep
,
3:30 pm
4:15 pm
(CET)
Save my spotSave my spotSave my spotSave my spot
Code of Conduct
WeAreDevelopers welcomes everyone and is dedicated to defending anybody from harassment, regardless of gender, gender identity, and expression, sexual orientation, disability, physical appearance, body size, race, age or religion.
Read more
Diversity & Inclusion
At the WeAreDevelopers Events we empower underrepresented groups by giving them the stage to share their knowledge and experiences. It is crucial for our international events to bring together the perspectives of people with different backgrounds.
Read more
NewsletterFacebookInstagramXLinkedInYouTube
Developers
JobsTeamsMagazineCommunity
Events
LiveWorld CongressCODE100
Business
Job AdsRecruiting ServicesEvent PartnershipBlogResources
Company
AboutTeamCareerContactPressLegal
© 2024 WeAreDevelopers – Connecting software developers with top employers worldwide.
Cookie Manager
PrivacyImprint