Episode 9: Typosquatting with Adam Baldwin
The Manifest
English - December 11, 2017 06:00 - 50 minutes - 25.9 MB - ★★★★★ - 3 ratingsTechnology Education How To package management software open source Homepage Download Apple Podcasts Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: Episode 8: Cargo and Crates.io with Carol (Nichols || Goulding)
Next Episode: Episode 10: Licensing with Kate Stewart
Wherein we discuss typosquatting and other security matters with Adam Baldwin, of Lift security and the Node Security Platform. We cover what kind of exploits people are trying, speculate about how blockchains may well be the answer, and unsuccessfully attempt to start a turf war between various package managers. Special Guest: Adam Baldwin.
Wherein we discuss typosquatting and other security matters with Adam Baldwin, of Lift security and the Node Security Platform. We cover what kind of exploits people are trying, speculate about how blockchains may well be the answer, and unsuccessfully attempt to start a turf war between various package managers.
Special Guest: Adam Baldwin.
Links:
^Lift Securitynpm registryTypo.js on GitHub52% of All JavaScript npm Packages Could Have Been Hacked via Weak CredentialsHave I been pwned?Protect your npm account with two-factor authenticationTyposquatting programming language package managersShellshockDependency CIThe Update Frameworkpackage.communitycrossenv malware on the npm registryNode Security PlatformYarnAdam Baldwin on TwitterAdam Baldwin on GitHub