In this episode we speak to Feross Aboukhadijeh, CEO of Socket.dev, a software supply chain security company. We discuss the risks of using third party dependencies, how JS and NPM could improve their approach to security, whether trust in open source is eroding, and how to improve the overall security posture of your application.
About Feross Aboukhadijeh
Feross is the founder and CEO of Socket, where he's working on a new approach to open source supply chain security. Feross is the author and maintainer of WebTorrent, StandardJS, and 100s of other open source projects which are downloaded 500+ million times per month. Feross is a lecturer at Stanford University where he teaches CS 253 Web Security. Socket, the company Feross started, is auditing every package on npm to detect suspicious changes and block software supply chain attacks. Hundreds of companies use Socket to protect their software applications and critical services from malware and security threats originating in open source code.
Other things mentioned:
Let us know what you think on Twitter:
https://twitter.com/consoledotdev
https://twitter.com/davidmytton
https://twitter.com/feross
Or by email: hello@console.dev
About Console
Console is the place developers go to find the best tools. Our weekly newsletter picks out the most interesting tools and new releases. We keep track of everything - dev tools, devops, cloud, and APIs - so you don’t have to.
Sign up for free at: https://console.dev
Recorded: 2022-04-06.
Cloud infra, with Kurt Mackey (Fly.io) - S04E11
Serverless databases, with Monica Sarbu (Xata) - S04E10
Creating Julia, with Jeff Bezanson (JuliaHub) - S04E09
WebAssembly, with Matt Butcher (Fermyon) - S04E08
Why engineering sucks, with Eli Schleifer (Trunk) - S04E07
Frontend platforms, with Matt Biilmann (Netlify) - S04E06
Devrel, with Christina Warren (GitHub) - S04E05
Shell scripting, with Steve Lee (Microsoft) - S04E04
Creating Go with Russ Cox (Google) - S04E03
Building Tools Devs Love, with Erica Brescia (Redpoint) - S04E02
Dev War Stories, with Steven Sinofsky (a16z, ex-Microsoft) - S04E01
Engineering Leadership, with Meri Williams - S03E10
WebAssembly, with Connor Hicks (Suborbital) - S03E09
VR, with Elena Kokkinara (Inflight VR) - S03E08
Containers & Tests, with Sergei Egorov (Atomic Jar) - S03E07
Data science, with Ines Montani (Explosion) - S03E06
Privacy Engineering, with Cate Huston (DuckDuckGo) - S03E04
OSS & Investing, with Joseph Jacks (OSS Capital) - S03E03
eBPF, with Liz Rice (Isovalent) - S03E02
Create your
podcast in
minutes
It is Free
Insight Story: Tech Trends Unpacked
Zero-Shot
Fast Forward by Tomorrow Unlocked: Tech past, tech future
Black Wolf Feed (Chapo Premium Feed Bootleg)
Bannon`s War Room