AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
18min chapter
Dependencies are dangerous
Go Time: Golang, Software Engineering
Understanding the Risks of Content Delivery Networks and Supply Chain Attacks in Programming
The chapter delves into the potential risks associated with Content Delivery Networks (CDNs) and supply chain attacks in programming, focusing on the security implications of relying on external CDNs for serving code to websites. The hosts underscore the importance of vigilance when integrating third-party libraries, advocating for direct code serving from domains as a more secure alternative. They also explore the differences in dependency management approaches between the Go and JavaScript communities, emphasizing the significance of thorough evaluation and community scrutiny to mitigate the risks of introducing malicious code into projects.
00:00
Transcript
Episode notes
Get the Snipd
podcast app
Unlock the knowledge in podcasts with the podcast player of the future.
AI-powered
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode
Save any
moment
Hear something you like? Tap your headphones to save it with AI-generated key takeaways
Share
& Export
Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more
AI-powered
podcast player
Listen to all your favourite podcasts with AI-powered features
Discover
highlights
Listen to the best highlights from the podcasts you love and dive into the full episode