lirantal
๐ฆ Node.js Secure Coding: nodejs-security.com ๐ @GitHub Star ๐ @OpenJS Pathfinder award for Security ๐ฅ DevRel at @snyksec
@snykTel Aviv, Israel
Pinned Repositories
awesome-nodejs-security
Awesome Node.js Security resources
awesome-opensource-israel
A curated list of Israeli-made projects, events, and individuals
cypress-social-logins
Cypress authentication flows using social network providers
daloradius
daloRADIUS is an advanced RADIUS web management application for managing hotspots and general-purpose ISP deployments. It features user management, graphical reporting, accounting, a billing engine, and integrates with OpenStreetMap for geolocation. The system is based on FreeRADIUS with which it shares access to the backend database.
dockly
Immersive terminal interface for managing docker containers and services
essential-nodejs-security-book
Documentation for Essential Node.js Security
is-website-vulnerable
finds publicly known security vulnerabilities in a website's frontend JavaScript libraries
lockfile-lint
Lint an npm or yarn lockfile to analyze and detect security issues
nodejs-cli-apps-best-practices
The largest Node.js CLI Apps best practices list โจ
npq
๐safely* install packages with npm or yarn by auditing them as part of your install process
lirantal's Repositories
lirantal/detect-secrets
A developer-friendly secrets detection tool for CI and pre-commit hooks based on Yelp's detect-secrets
lirantal/opn-shell
cross-platform execution of command line programs in shells
lirantal/Proactive-Controls-for-JavaScript-Supply-Chain-Security
Proactive NPM Controls for Supply Chain Security
lirantal/slides-react-security-2022
Slides for talk: How React Applications Get Hacked in the Real World
lirantal/slides-react-security-lightning-talk-2022
Slides for talk: How React Applications Get Hacked in the Real World
lirantal/swagger-lint-api
Linter for a Swagger JSON API spec
lirantal/slides-supply-chain-security
lirantal/git-pull-or-clone
Ensure a git repo exists on disk and that it's up-to-date
lirantal/helloworld-container-signing
A 'hello world' container signing, supply chain security, SBOM and provenance workflow
lirantal/lockfile-injection-research
Lockfile injection research
lirantal/nodejs-integration-tests-best-practices
โ Master the art of the most powerful testing technique for Node.js: Component tests. Including super-comprehensive best practices list and an example app (November 2021)
lirantal/ref-app-php
An example / reference PHP application with composer
lirantal/slidev
Presentation Slides for Developers
lirantal/alexanderDR1
lirantal/AviramV
lirantal/aviyadavid
lirantal/docs
Documentation for Slidev
lirantal/git-promise
Simple wrapper to run any git command and process it's output using promises.
lirantal/lirantaldotcom-old
The website of lirantal.com
lirantal/meetups
List of past meetups & talks slides
lirantal/NodeGoat-training
The OWASP NodeGoat project provides an environment to learn how OWASP Top 10 security risks apply to web applications developed using Node.js and how to effectively address them.
lirantal/public-speaking-1
Matteo Collina's portfolio of public speaking engagements
lirantal/ref-app-ruby
A containized Ruby application project with Docker and Docker Compose
lirantal/RotemBT
lirantal/ruby-advisory-db
A database of vulnerable Ruby Gems
lirantal/security-vulnerability-examples-next-js-postgres
lirantal/slidev-theme-penguin
A Penguin ๐ง theme for Slidev
lirantal/slidev-theme-purplin
Slidev theme
lirantal/slsa
Supply-chain Levels for Software Artifacts
lirantal/svg-to-ts
Build performant SVG icon libraries by converting raw SVG files to TypeScript that is optimized for modern tree shaking mechanisms.