JavaScript Archives - Software Engineering Daily

JavaScript Supply Chain with Feross Aboukhadijeh

Apr 23, 2022

45:18

Creator website

Highlights

AI Chapters

Episode notes

How to Analyze a Package on NPM?

04:41

Is the Signal to Noise Ratio Really High?

03:04

What's the First Socket That You've Found?

03:37

Introduction

3min

Is It a BitTorrent or a WebRTC?

4min

What's the JavaScript Supply Chain?

5min

JavaScript Vulnerability Scanner - What's Novel About Socket?

4min

What's the Difference Between Malware and Known Vulnerabilities?

3min

What Is the Best Malware on NPM?

3min

Socket Detection in Continuous Delivery Processes

5min

How Do You Analyze the Software Supply Chain Dependency Infrastructure?

2min

How to Analyze a Package on NPM?

5min

10.

JavaScript Security - What Makes That Hard?

3min

11.

Is There a Reproducible Build?

3min

12.

Is the Signal to Noise Ratio Really High?

3min

13.

What's the First Socket That You've Found?

4min

The JavaScript supply chain includes numerous vulnerabilities due to its expansive nature and the long dependency chains. Socket is a new security company that can protect your most critical apps from supply chain attacks. They are taking an entirely new approach to one of the hardest problems in security in a stagnant part of the industry that has historically been obsessed with just reporting on known vulnerabilities. Feross is the Founder and CEO of Socket Security. He joins the show to talk about Socket’s approach to detecting and blocking supply chain attacks.

Sponsorship inquiries: sponsor@softwareengineeringdaily.com

The post JavaScript Supply Chain with Feross Aboukhadijeh appeared first on Software Engineering Daily.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.