DCJS[64] - Linting your XSS Troubles Away by Olivia Brundage

Are you going?

60 spots left

Share:
Location image of event venue

Details

Cross-site scripting (XSS) is one of the most popular, and potentially most damaging, client-side attack vector - and it's one of the easiest to prevent. XSS happens because data isn't properly validated and sanitized. As it turns out, especially with JavaScript, the correct design pattern in handling any sort of data can be checked to prevent XSS attacks.

Within this talk, Olivia will show you various demos of XSS attacks (like DOM-based and reflected) and introduce you to tools that can help you combat and prevent this vulnerability from happening through the use of an eslint plugin. Don't use eslint plugin? That's fine! She'll go over different tools that do the job.

She'll also demonstrate how Mapbox implemented this tool into their code pipeline, so that you can be confident, like they are, in deploying XSS free code.

Olivia is a Security Engineer at Mapbox where she secures and maintains availability on their cloud infrastructure. She write mostly JavaScript these days, is a big videogame nerd, and has two adorable cats. She also holds (controversial as it is) that Star Trek is better than Star Wars.

********************************

SPONSOR SHOUTOUT: Joyent!

Joyent lives on the leading edge of technical innovation. Our team pioneered public cloud computing (and hybrid cloud), nurtured and grew Node.js into a de facto standard for web, mobile and IoT architectures, and was among the first to embrace and industrialize containers, compute-centric object storage, and what is now coming to be known as serverless computing. We are passionate about technology.

********************************

HOST SHOUTOUT: CHIEF!

CHIEF is a full-service agency (and part of the ByteCubed family) creating new possibility in the public and private sector. From critical government and nonprofit missions to powerful consumer brands, they create experiences for your audiences that drive global impact.

********************************

We hope to see all of you for our December meetup! Bring your questions, and if you're looking for a job (or hiring) be prepared to connect with others!

As usual, food will be provided!