Stranger Danger - Finding Security Vulnerabilities Before They Find You

Discover how to identify and mitigate security vulnerabilities in open source NPM modules before they compromise your application's safety. In this 34-minute conference talk from Devoxx, explore the potential risks associated with introducing third-party code into your system. Learn through practical demonstrations using a sample application called Goof, which intentionally incorporates vulnerable dependencies. Gain insights into exploiting these vulnerabilities from an attacker's perspective, understand the root causes of security issues, and acquire valuable knowledge on prevention and remediation strategies. Equip yourself with the skills to scrutinize and secure your application's dependencies, protecting both your system and user data from potential threats.