shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

264
active users

#SecureCoding

0 posts0 participants0 posts today
Tanya Janca | SheHacksPurple :verified: :verified:<p>5,000 subscribers for my monthly newsletter, wow! Thank you, all of you, for learning about <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> and <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> with me! 🥰 The newsletter has come a long way since 2018! </p><p>Join free, here: <a href="https://twp.ai/4io3cd" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4io3cd</span><span class="invisible"></span></a><br><a href="https://infosec.exchange/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>5,000 subscribers for my monthly newsletter, wow! Thank you, all of you, for learning about <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> and <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> with me! 🥰 The newsletter has come a long way since 2018! </p><p>Join free, here: <a href="https://twp.ai/4iokiv" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4iokiv</span><span class="invisible"></span></a><br><a href="https://infosec.exchange/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>With 25+ presentations to choose from, I cover everything from <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> and <a href="https://infosec.exchange/tags/threatmodeling" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>threatmodeling</span></a> to AI risks and <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a>—always with humor, clarity, and actionable takeaways.</p><p>💡 These aren’t just talks—they’re lessons your team will remember.</p><p><a href="https://twp.ai/9PSP09" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/9PSP09</span><span class="invisible"></span></a></p><p>2/3</p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>5,000 subscribers for my monthly newsletter, wow! Thank you, all of you, for learning about <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> and <a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> with me! 🥰 The newsletter has come a long way since 2018! </p><p>Join free, here: <a href="https://twp.ai/4imzF9" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">twp.ai/4imzF9</span><span class="invisible"></span></a><br><a href="https://infosec.exchange/tags/applicationsecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>applicationsecurity</span></a></p>
Yuna<p>Is Node.js the future of backend development, or just a beautifully wrapped grenade?</p><p>Lately, I see more and more backend systems, yes, even monoliths, built entirely in Node.js, sometimes with server-side rendering layered on top. These are not toy projects. These are services touching sensitive PII data, sometimes in regulated industries.</p><p>When I first used Node.js years ago, I remember:<br> • Security concepts were… let’s say aspirational.<br> • Licensing hell due to questionable npm dependencies.<br> • Tests were flaky, with mocking turning into dark rituals.<br> • Behavior of libraries changed weekly like socks, but more dangerous.<br> • Internet required to run a “local” build. How comforting.</p><p>Even with TypeScript, it all melts back into JavaScript at runtime, a language so flexible it can hang itself.</p><p>Sure, SSR and monoliths can simplify architecture. But they also widen the attack surface, especially when:<br> • The backend is non-compiled.<br> • Every endpoint is a potential open door.<br> • The system needs Node + a fleet of dependencies + a container + prayer just to run.</p><p>Compare that to a compiled, stateless binary that:<br> • Runs in a scratch container.<br> • Requires zero runtime dependencies.<br> • Has encryption at rest, in transit, and ideally per-user.<br> • Can be observed, scaled, audited, stateless and destroyed with precision.</p><p>I’ve shipped frontends that are static, CDN-delivered, secure by design, and light enough to fit on a floppy disk. By running them with Node, I’m loading gigabytes of unknown tooling to render “Hello, user”.</p><p>So I wonder:<br>Is this the future? Or am I just… old?</p><p>Are we replacing mature, scalable architectures with serverless spaghetti and 12-factor mayhem because “it works on Vercel”?</p><p>Tell me how you build secure, observable, compliant systems in Node.js.<br>Genuinely curious.<br>Mildly terrified and maybe old.</p><p><a href="https://hachyderm.io/tags/NodeJS" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NodeJS</span></a> <a href="https://hachyderm.io/tags/BackendSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BackendSecurity</span></a> <a href="https://hachyderm.io/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureCoding</span></a> <a href="https://hachyderm.io/tags/PII" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PII</span></a> <a href="https://hachyderm.io/tags/Compliance" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Compliance</span></a> <a href="https://hachyderm.io/tags/SoftwareArchitecture" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SoftwareArchitecture</span></a> <a href="https://hachyderm.io/tags/ServerSideRendering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ServerSideRendering</span></a> <a href="https://hachyderm.io/tags/TypeScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TypeScript</span></a> <a href="https://hachyderm.io/tags/Java" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Java</span></a> <a href="https://hachyderm.io/tags/Kotlin" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Kotlin</span></a> <a href="https://hachyderm.io/tags/Golang" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Golang</span></a> <a href="https://hachyderm.io/tags/Erlang" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Erlang</span></a> <a href="https://hachyderm.io/tags/Ruby" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Ruby</span></a> <a href="https://hachyderm.io/tags/Scalability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Scalability</span></a> <a href="https://hachyderm.io/tags/Observability" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Observability</span></a> <a href="https://hachyderm.io/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://hachyderm.io/tags/LegacyVsModern" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LegacyVsModern</span></a> <a href="https://hachyderm.io/tags/SecureByDesign" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureByDesign</span></a> <a href="https://hachyderm.io/tags/CompiledLanguages" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CompiledLanguages</span></a> <a href="https://hachyderm.io/tags/CloudArchitecture" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CloudArchitecture</span></a> <a href="https://hachyderm.io/tags/StatelessDesign" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>StatelessDesign</span></a> <a href="https://hachyderm.io/tags/SecurityTheatre" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecurityTheatre</span></a> <a href="https://hachyderm.io/tags/TechSatire" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TechSatire</span></a> <a href="https://hachyderm.io/tags/LinkedInTechRant" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>LinkedInTechRant</span></a></p>
Sean Martin 🎙️✨:verified_paw: :donor:<p>Security isn’t just about compliance—it’s about building stronger applications. In this episode, <span class="h-card" translate="no"><a href="https://infosec.exchange/@Marcociappelli" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Marcociappelli</span></a></span> and <span class="h-card" translate="no"><a href="https://infosec.exchange/@seanmartin" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>seanmartin</span></a></span> chat with Jim Manico about developer training, <span class="h-card" translate="no"><a href="https://infosec.exchange/@owasp" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>owasp</span></a></span> and how security fuels business success. Want to build secure software from the start? Tune in now! 🎙️</p><p>📺 Watch now: <a href="https://youtu.be/OJXD_cS1JJM" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/OJXD_cS1JJM</span><span class="invisible"></span></a><br>🎧 Listen now: <a href="https://brand-stories-podcast.simplecast.com/episodes/turning-developers-into-security-champions-the-business-case-for-secure-development-a-manicode-brand-story-with-jim-manico" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="ellipsis">brand-stories-podcast.simpleca</span><span class="invisible">st.com/episodes/turning-developers-into-security-champions-the-business-case-for-secure-development-a-manicode-brand-story-with-jim-manico</span></a><br>📖 Read now: <a href="https://www.itspmagazine.com/their-stories/turning-developers-into-security-champions-the-business-case-for-secure-development-a-manicode-brand-story-with-jim-manico" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://www.</span><span class="ellipsis">itspmagazine.com/their-stories</span><span class="invisible">/turning-developers-into-security-champions-the-business-case-for-secure-development-a-manicode-brand-story-with-jim-manico</span></a></p><p>⬇️ Download the Course Catalog: <a href="https://itspm.ag/manicode-x684" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">itspm.ag/manicode-x684</span><span class="invisible"></span></a></p><p><a href="https://infosec.exchange/tags/Cybersecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cybersecurity</span></a> <a href="https://infosec.exchange/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> <a href="https://infosec.exchange/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureCoding</span></a> <a href="https://infosec.exchange/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a> <a href="https://infosec.exchange/tags/SoftwareSecurity" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SoftwareSecurity</span></a> <a href="https://infosec.exchange/tags/Engineering" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Engineering</span></a> <a href="https://infosec.exchange/tags/Developers" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Developers</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>I finally have my book!!!!<br><a href="https://shehackspurple.ca/books/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">shehackspurple.ca/books/</span><span class="invisible"></span></a><br><a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a></p>
Tanya Janca | SheHacksPurple :verified: :verified:<p>If you are thinking of purchasing my new book, Alice and Bob Learn Secure Coding, as a favor to me, please consider buying it on or before February 5th. 🙏<br><a href="https://shehackspurple.ca/books/" rel="nofollow noopener" translate="no" target="_blank"><span class="invisible">https://</span><span class="">shehackspurple.ca/books/</span><span class="invisible"></span></a> <br><a href="https://infosec.exchange/tags/appsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>appsec</span></a> <a href="https://infosec.exchange/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a></p>
Slim Bill (He/Him)<p>A Bit of Security for Feb 16, 2024<br>How can we cut down on the number of security defects in code? Let’s take a deep dive into the software development life cycle – the SDLC. Listen to this - <br>Let me know what you think in the comments below or at wjmalik@noc.social<br><a href="https://noc.social/tags/cybersecuritytips" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecuritytips</span></a> <a href="https://noc.social/tags/Securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Securecoding</span></a> <a href="https://noc.social/tags/SDLC" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SDLC</span></a> <a href="https://noc.social/tags/CleanroomSoftware" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>CleanroomSoftware</span></a> <a href="https://noc.social/tags/BitofSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BitofSec</span></a><br><a href="https://youtu.be/dKBXvubN_gE" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/dKBXvubN_gE</span><span class="invisible"></span></a></p>
Slim Bill (He/Him)<p>A Bit of Security for February 14, 2024<br>Why are there security vulnerabilities in code? What can we do about it? Listen to this - <br> <a href="https://youtu.be/gXYOplbLO7w" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="">youtu.be/gXYOplbLO7w</span><span class="invisible"></span></a><br>Let me know what you think in the comments below or at wjmalik@noc.social<br><a href="https://noc.social/tags/cybersecuritytips" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cybersecuritytips</span></a> <a href="https://noc.social/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> <a href="https://noc.social/tags/codescanning" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>codescanning</span></a> <a href="https://noc.social/tags/staticanalysis" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>staticanalysis</span></a> <a href="https://noc.social/tags/BitofSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>BitofSec</span></a></p>
Patricia Aas<p>"(In)Secure C++" live public online training Aug 8th - 11th (CET)</p><p>In this 4-day training I teach how C and C++ applications can be exploited, and how you can find vulnerabilities that can be exploited. Frequently referred to as the "best training I have ever attended" by students.</p><p>Sign up, seats are limited. 20% discount on bookings of 2 or more seats, example: 2000€ for one seat, 3200€ for two.</p><p><a href="https://social.vivaldi.net/tags/cpp" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>cpp</span></a> <a href="https://social.vivaldi.net/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> <a href="https://social.vivaldi.net/tags/hacking" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>hacking</span></a><br><a href="https://turtlesec.no/blog/insecure-cpp/" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">turtlesec.no/blog/insecure-cpp</span><span class="invisible">/</span></a></p>
The Hacker News<p>Referenced link: <a href="https://thehackernews.com/2022/12/what-developers-need-to-fight-battle.html" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2022/12/what</span><span class="invisible">-developers-need-to-fight-battle.html</span></a><br>Discuss on <a href="https://discu.eu/q/https://thehackernews.com/2022/12/what-developers-need-to-fight-battle.html" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">discu.eu/q/https://thehackerne</span><span class="invisible">ws.com/2022/12/what-developers-need-to-fight-battle.html</span></a></p><p>Originally posted by The Hacker News / @TheHackersNews@twitter.com: <a href="https://twitter.com/TheHackersNews/status/1598626031782416384#m" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">twitter.com/TheHackersNews/sta</span><span class="invisible">tus/1598626031782416384#m</span></a></p><p>What Developers Need to Fight the Battle Against Common Vulnerabilities</p><p>Read: <a href="https://thehackernews.com/2022/12/what-developers-need-to-fight-battle.html" rel="nofollow noopener" target="_blank"><span class="invisible">https://</span><span class="ellipsis">thehackernews.com/2022/12/what</span><span class="invisible">-developers-need-to-fight-battle.html</span></a></p><p><a href="https://social.platypush.tech/tags/securecoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>securecoding</span></a> <a href="https://social.platypush.tech/tags/DevSecOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DevSecOps</span></a></p>
Dan Conn<p>OK time for this one!</p><p>Hey <a href="https://hachyderm.io/tags/Hachyderm" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Hachyderm</span></a> I'm Dan Conn and I've been a software developer for just over 10 years, with a strong interest in cybersecurity for just as long.</p><p>Professionally I'm interested in <a href="https://hachyderm.io/tags/Java" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Java</span></a>, <a href="https://hachyderm.io/tags/Python" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Python</span></a>, <a href="https://hachyderm.io/tags/SecureCoding" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SecureCoding</span></a> <a href="https://hachyderm.io/tags/SoftwareSupplyChains" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SoftwareSupplyChains</span></a>, <a href="https://hachyderm.io/tags/ThreatModelling" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ThreatModelling</span></a>, <a href="https://hachyderm.io/tags/OSINT4Good" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OSINT4Good</span></a> <a href="https://hachyderm.io/tags/PenTesting" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PenTesting</span></a> <a href="https://hachyderm.io/tags/AppSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AppSec</span></a> and <a href="https://hachyderm.io/tags/Cryptography" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Cryptography</span></a></p><p>I like to do talks, hack, code, run and also love making music and listening / dancing to it too ❤️</p><p>Come say hi!</p><p><a href="https://hachyderm.io/tags/Introductions" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Introductions</span></a> <a href="https://hachyderm.io/tags/Introduction" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Introduction</span></a></p>