Date: Thu, 04 Jan 2018 01:00:00 +0000
<div class="trix-content"> <div><strong>Panel: </strong></div><div>Charles Max Wood</div><div>AJ O’Neal</div><div>Joe Eames</div><div><strong>Special Guests: Adam Baldwin</strong></div><div>In this episode, JavaScript Jabber panelist speak with Adam Baldwin. Adam is a return guest and has many years of application security experience. Currently, Adam runs the Node Security Project/Node Security Platform, and Lift Security. Adam discusses the latest of security of Node Security with Charles and AJ. Discussion topics cover security in other platforms, dependencies, security habits, breaches, tokens, bit rot or digital atrophy, and adding security to your development.</div><div><strong>In particular, we dive pretty deep on:</strong></div><ul> <li>What is the Node Security Project/Node Security Platform</li> <li>Dependency trees</li> <li>NPM</li> <li>Tokens and internal data</li> <li>What does Node Security do for me?</li> <li>NPX and NSP</li> <li>Command Line CIL</li> <li>Bit Rot or Digital Atrophy</li> <li>How often should you check repos.</li> <li>Advisories</li> <li>If I NPM install?</li> <li>Circle CI or Travis</li> <li>NSP Check</li> <li>What else could I add to the securities?</li> <li>Incorporate security as you build things</li> <li>How do you find the vulnerabilities in the NPM packages</li> <li>Two Factor authentication for NPM</li> <li>Weak Passwords</li> <li>OL Dash?</li> <li>Install Scripts</li> <li>Favorite Security Story?</li> <li>And much more!</li> </ul><div><strong>Links:</strong></div><ul> <li><a href="https://nodesecurity.io">Node Security </a></li> <li><a href="https://liftsecurity.io">Lift Security</a></li> <li><a href="https://github.com/evilpacket">https://github.com/evilpacket</a></li> <li>@nodesecurity</li> <li>@liftsecurity</li> <li>@adam_baldwin</li> </ul><div><strong>Picks:</strong></div><div>Adam</div><ul> <li><a href="https://keybase.io">Key Base</a></li> <li><a href="https://www.google.com/search?client=safari&rls=en&q=Have+I+been+Pwned?&ie=UTF-8&oe=UTF-8">Have I been Pwned?</a></li> </ul><div>Charles</div><ul> <li><a href="https://www.amazon.com/Aromatic-Salt-Premium-Ceramic-Green/dp/B01LOUBZGC/ref=sr_1_2_a_it?s=books&ie=UTF8&qid=1515028074&sr=8-2&keywords=Nettie+Pot">Nettie Pot </a></li> <li><a href="http://convo.com">convo.com</a></li> </ul><div>AJ</div><ul> <li>This Episode with Adam Baldwin</li> <li><a href="https://www.amazon.com/Free-Future-Radical-Chris-Anderson/dp/1401322905">Free the Future of Radical Price</a></li> <li><a href="https://www.amazon.com/Sam-Walton-Made-America-ebook/dp/B008ZPG704/ref=sr_1_1?s=books&ie=UTF8&qid=1515027905&sr=1-1&keywords=Made+In+America+Sam+Walton">Made In America Sam Walton</a></li> <li>Sonic - VGM Album</li> </ul><div>Joe</div><ul> <li><a href="http://deadline.com/2017/10/psych-the-movie-usa-networks-john-cena-new-york-comic-con-dule-hill-james-roday-1202184192/">Pych - Movie</a></li> <li><a href="https://www.ng-conf.org">NG Conf</a></li> <li><a href="https://www.amazon.com/Why-We-Dont-Suck-Partisan/dp/1524762733">Why We Don’t Suck</a></li> </ul><div>Special Guest: Adam Baldwin.</div> </div> Support this podcast at — https://redcircle.com/javascript-jabber/donations Advertising Inquiries: https://redcircle.com/brands Privacy & Opt-Out: https://redcircle.com/privacy