OWASP Bristol, November 2025 Meetup

Doors open at 6:00pm for drinks and pizzas with the talks starting at 6:30.

The first talk is by Danielle Dias on 'Enhance Your Security Posture with the Power of Threat Modelling' and this will be followed by a talk from Louie Colgan on 'How to hack an npm package'.

There will be plenty of time for mingling and socialising before and after the talks, so we hope to see you there!

Enhance Your Security Posture with the Power of Threat Modelling
In the ever-evolving landscape of cybersecurity, securing your applications is a critical challenge. Attackers are constantly finding new ways to exploit vulnerabilities, highlighting the need for a proactive "shift-left" strategy to prevent threats from happening - even before a single line of code is written. Understanding and managing security early is essential, and that’s where Threat Modelling comes in.

How to hack an npm package
A run-through on how to hack an npm package to bring awareness around security, social engineering and the importance of due diligence when it comes to using open source software. It'll end with recommendations on how to mitigate the security risks and tools we can use to protect your business and front end software.

Location:
Hybrid event hosted by Ping Identity, 7th Floor, Prologue Works, 25 Marsh Street, Bristol, BS1 4AX.
If you can not attend in person then there is the option of attending remotely, the link to join the meeting will be shared on registration.
It is intended that the meeting will be recorded (although no guarantee)