ainthek.blogspot.com
a.in.the.k: January 2015
http://ainthek.blogspot.com/2015_01_01_archive.html
The thoughts you may not like. . but i want to remember . Monday, January 5, 2015. Npm test (a sample case study of selected libraries). What are people using as 'Test a package' script for their node packages? I have taken several node modules from my test project and searched for scripts.test in their package.json. Here is complete listing of script.test values from package.json files:. Tap (Test Anything Protocol tools for node). 11 modules uses tap. 7 modules uses mocha. When jshint . & buster-te...
blog.liftsecurity.io
When This is Really That | The ^lift Security Blog
https://blog.liftsecurity.io/2015/04/27/when-this-is-really-that
When This is Really That. Posted Apr 27, 2015. For many, this section will be a review, so feel free to skip ahead. However, since we are dealing with some features of the JavaScript language that most of us don’t use every day, I’m going to go ahead and give a brief refresher so the rest of this makes sense. Object, which is an object that refers to current variable scope. Typically what happens is that the property is defined with the. Object specified when bind is called. As mentioned above. The.
blog.liftsecurity.io
The ^lift Security Blog
https://blog.liftsecurity.io/authors/adam-baldwin
Npm client leaked authentication tokens. Posted Mar 31, 2016. The npm client supports installing packages from locations that are outside of the official npm registry (such as at HTTP urls). Due to a design flaw introduced in late 2014 the authentication bearer tokens used to authenticate the npm client with the registry were being sent along with all requests, not just to the official registry. Security Incident: Node Security API. Posted Mar 25, 2016. This morning Dan Silivestru, CEO of BitHound. One q...
blog.liftsecurity.io
A Malicious Module on npm | The ^lift Security Blog
https://blog.liftsecurity.io/2015/01/27/a-malicious-module-on-npm
A Malicious Module on npm. Posted Jan 27, 2015. Earlier this week a package called. Was published to npm. This package had a preinstall hook that executed the command. It was created on 01/26/2015 at 15:28 and immediately posted to Hacker News and then it was unpublished from the registry by npm at 17:06 giving it a lifespan of less than two hours. There are a couple of topics worth close examination in this post:. The topic of security disclosure and how to disclose information responsibly. Full disclos...
decentralizedweb.net
Decentralized Web Summit: Locking the Web Open
https://www.decentralizedweb.net/learn-more
Source: On Distributed Communications Networks, Paul Baran, 1962. Take a deeper dive into the projects, protocols, and products that our speakers are working on. In SCIENCE FAIR, our panelists explain some of the decentralized projects now being developed. At each Rebooting the Web of Trust event we collaboratively create white papers and specifications on topics that will have the greatest impact on the future of self-sovereign identity. All documentation for the event is open source on GitHub. 2015 Web...
decentralizedweb.net
Decentralized Web Summit: Locking the Web Open
https://www.decentralizedweb.net/people
As the leader of the Mozilla Project, Mitchell Baker is responsible for organizing and motivating a massive, worldwide, collective of employees and volunteers who are breathing new life into the Internet with the Firefox Web browser, Firefox OS and other Mozilla products. Mozilla Foundation and Corp, Executive Chairperson. Vint Cerf, widely known as one of the "Fathers of the Internet", is vice president and Chief Internet Evangelist for Google, as well as the co-creator of the TCP/IP protocols. Brewster...
andyet.com
&yet
https://andyet.com/product-development
Software is about people. We design, build, and secure software. Continuous Security monitoring for your Node apps. Your guides in shipping secure Node software. Design and creative services for tech companies. JS, architecture, and database consulting for enterprises. Truly simple video chat and screen sharing for groups. Easiest way to add voice, video, and screen-sharing to your app. Alex Sexton, Stripe. We’ve worked with some stellar folks. What people are saying about &yet. We’d love for you to join!
SOCIAL ENGAGEMENT