DEV Community

Liran Tal profile picture

Liran Tal

GitHub Star 🌟 · DevRel at Snyk 🥑 · Author of Essential Node.js Security · Node.js CLI Best Practices 🔥 · Docker security 🐳

Location Israel Joined Joined on  Email address liran@lirantal.com Personal website https://www.nodejs-security.com/ github website twitter website

Work

Developer Advocate at Snyk

Pin Pinned

Don't let security vulnerabilities crawl into your Node.js Docker images
lirantal profile

Don't let security vulnerabilities crawl into your Node.js Docker images

#docker #scan #image #vulnerabilities
18
Comments
2 min read
HTTP webhooks on Firebase Functions and Fastify: A Practical Case Study with Lemon Squeezy
lirantal profile

HTTP webhooks on Firebase Functions and Fastify: A Practical Case Study with Lemon Squeezy

Comments
6 min read

Want to connect with Liran Tal?

Create an account to connect with Liran Tal. You can also sign in below to proceed if you already have an account.

Create Account
Already have an account? Sign in
How To Get Social Media Previews Right on Astro blog with OpenGraph Meta Tags
lirantal profile

How To Get Social Media Previews Right on Astro blog with OpenGraph Meta Tags

#opengraph #social #astro
Comments
3 min read
Best Practices for Bootstrapping a Node.js Application Configuration
lirantal profile

Best Practices for Bootstrapping a Node.js Application Configuration

Comments
6 min read
How I Deployed Tailscale VPN to Securely Access Home Assistant Remotely
lirantal profile

How I Deployed Tailscale VPN to Securely Access Home Assistant Remotely

#vpn #tailscale #homeassistant #iot
Comments
4 min read
Environment variables and configuration anti patterns in Node.js applications
lirantal profile

Environment variables and configuration anti patterns in Node.js applications

#node #config #dotenv #env
Comments
9 min read
Vue.js Patterns: Using Vue.js 3 Composition API for Reactive Parent to Child Communication
lirantal profile

Vue.js Patterns: Using Vue.js 3 Composition API for Reactive Parent to Child Communication

6
Comments 1
4 min read
How to Process Scheduled Queue Jobs in Node.js with BullMQ and Redis on Heroku
lirantal profile

How to Process Scheduled Queue Jobs in Node.js with BullMQ and Redis on Heroku

#queues #node #bullmq #redis
3
Comments
8 min read
Securing Your Node.js Apps by Analyzing Real-World Command Injection Examples
lirantal profile

Securing Your Node.js Apps by Analyzing Real-World Command Injection Examples

#node #security
2
Comments 1
6 min read
An Introduction to Command Injection Vulnerabilities in Node.js and JavaScript
lirantal profile

An Introduction to Command Injection Vulnerabilities in Node.js and JavaScript

#coding #node #javascript #security
Comments
4 min read
The security concerns of a JavaScript sandbox with the Node.js VM module
lirantal profile

The security concerns of a JavaScript sandbox with the Node.js VM module

#applicationsecurity
3
Comments
5 min read
How to verify and secure your Mastodon account
lirantal profile

How to verify and secure your Mastodon account

#applicationsecurity #engineering
Comments
4 min read
NPM security: preventing supply chain attacks
lirantal profile

NPM security: preventing supply chain attacks

#applicationsecurity #opensource
Comments
15 min read
How to add Playwright tests to your pull request CI with GitHub Actions
lirantal profile

How to add Playwright tests to your pull request CI with GitHub Actions

#engineering
4
Comments 1
11 min read
Choosing the best Node.js Docker image
lirantal profile

Choosing the best Node.js Docker image

#applicationsecurity #docker #node
Comments
11 min read
How to install Ruby in a macOS for local development
lirantal profile

How to install Ruby in a macOS for local development

#applicationsecurity #ecosystems #opensource
Comments
7 min read
10 best practices to containerize Node.js web applications with Docker
lirantal profile

10 best practices to containerize Node.js web applications with Docker

#containers #security #docker #node
3
Comments
28 min read
The npm faker package and the unexpected demise of open source libraries
lirantal profile

The npm faker package and the unexpected demise of open source libraries

#dependencyhealth #opensource #opensourcesecurity
9
Comments
10 min read
How to build a Slack bot with Zapier and JavaScript to fetch trending topics on Reddit
lirantal profile

How to build a Slack bot with Zapier and JavaScript to fetch trending topics on Reddit

#engineering
2
Comments
10 min read
A definitive guide to Ruby gems dependency management
lirantal profile

A definitive guide to Ruby gems dependency management

#applicationsecurity #opensource
2
Comments
11 min read
Slidev 101: Coding presentations with Markdown
lirantal profile

Slidev 101: Coding presentations with Markdown

#engineering
2
Comments
8 min read
Snyk Introduces Python Poetry support for securing your Python projects
lirantal profile

Snyk Introduces Python Poetry support for securing your Python projects

#product #devtools #python #announcements
2
Comments
1 min read
The maintainer's CI workflows recipe for a peaceful open source life
lirantal profile

The maintainer's CI workflows recipe for a peaceful open source life

#actionshackathon21 #github #opensource
9
Comments 3
4 min read
[Discuss] 10 React security best practices
lirantal profile

[Discuss] 10 React security best practices

#discuss #cheatsheet #react #javascript
23
Comments 1
1 min read
[Discuss] Enterprise security best practices for managing vulnerabilities at scale
lirantal profile

[Discuss] Enterprise security best practices for managing vulnerabilities at scale

#discuss #cheatsheet #security #enterprise
4
Comments
1 min read
AngularJS Security Fundamentals
lirantal profile

AngularJS Security Fundamentals

#angular #javascript #security #web
7
Comments
7 min read
Angular vs React: security bakeoff 2019
lirantal profile

Angular vs React: security bakeoff 2019

#javascript #security #react #angular
11
Comments
4 min read
Making automatic yet informed decisions when upgrading dependencies
lirantal profile

Making automatic yet informed decisions when upgrading dependencies

#javascript #dependency
16
Comments 2
3 min read
JavaScript frameworks security report 2019
lirantal profile

JavaScript frameworks security report 2019

#javascript #security #react #angular
78
Comments 1
4 min read
Taking a look at CFPs for NodeTLV. I'll see you there, right?
lirantal profile

Taking a look at CFPs for NodeTLV. I'll see you there, right?

#node #conf #nodetlv #cfp
5
Comments
2 min read
My first time at JSConf Budapest, how was it?
lirantal profile

My first time at JSConf Budapest, how was it?

#jsconf #speaking #devrel #conferences
6
Comments
6 min read
Using jq to manipulate JSON results of snyk security tests
lirantal profile

Using jq to manipulate JSON results of snyk security tests

#jq #json #security #snyk
10
Comments
2 min read
npm security tips to keep you safe of malicious modules
lirantal profile

npm security tips to keep you safe of malicious modules

#npm #node #security #javascript
51
Comments 1
2 min read
what is your recent dev-related confession?
lirantal profile

what is your recent dev-related confession?

#discuss #webdev #beginners
5
Comments 4
1 min read
6 stages of refactoring a jest test case
lirantal profile

6 stages of refactoring a jest test case

#tests #testing #jest #javascript
9
Comments
2 min read
npm passes the 1 millionth package milestone! What can we learn?
lirantal profile

npm passes the 1 millionth package milestone! What can we learn?

#npm #node #javascript #opensource
5
Comments
1 min read
Demystifying Jest Async Testing Patterns
lirantal profile

Demystifying Jest Async Testing Patterns

#jest #testing
19
Comments
4 min read
Are you building Docker images? here's how to avoid leaking sensitive information into Docker images
lirantal profile

Are you building Docker images? here's how to avoid leaking sensitive information into Docker images

#docker #secrets #leak #image
51
Comments 2
2 min read
Why you should use COPY instead of ADD when building Docker images
lirantal profile

Why you should use COPY instead of ADD when building Docker images

#docker #build #images #devops
54
Comments 2
2 min read
How to securely build Docker images for Node.js
lirantal profile

How to securely build Docker images for Node.js

#docker #image #container #security
48
Comments 8
2 min read
How to improve your npm identity security with 2FA and Tokens
lirantal profile

How to improve your npm identity security with 2FA and Tokens

#npm #node #javascript #security
13
Comments 4
2 min read
Did you hear about the malicious backdoor discovered in the popular bootstrap-sass Ruby gem?
lirantal profile

Did you hear about the malicious backdoor discovered in the popular bootstrap-sass Ruby gem?

#ruby #security #rails #rubygems
39
Comments 1
1 min read
Top ten most popular docker images each contain at least 30 vulnerabilities
lirantal profile

Top ten most popular docker images each contain at least 30 vulnerabilities

#docker #image #container #security
42
Comments 7
2 min read
Tip #5 - audit your project for vulnerabilities in your open source dependencies
lirantal profile

Tip #5 - audit your project for vulnerabilities in your open source dependencies

#npm #node #security #javascript
9
Comments
2 min read
Assess your npm project health and call the doctor!
lirantal profile

Assess your npm project health and call the doctor!

#npm #node #javascript #tips
9
Comments 1
2 min read
So you think you're just gonna `npm install`? Think again
lirantal profile

So you think you're just gonna `npm install`? Think again

#npm #node #javascript #tips
153
Comments 17
2 min read
How to avoid leaking secrets to the npm registry
lirantal profile

How to avoid leaking secrets to the npm registry

#npm #node #security #javascript
42
Comments
2 min read
Reasons to Love Jest: The Developer Experience
lirantal profile

Reasons to Love Jest: The Developer Experience

#jest #testing #javascript
11
Comments
4 min read
Reasons to Love Jest: The Test Framework
lirantal profile

Reasons to Love Jest: The Test Framework

#jest #testing #javascript #testautomation
14
Comments
3 min read
what would you focus on when hiring engineering vp for a team of 10?
lirantal profile

what would you focus on when hiring engineering vp for a team of 10?

#discuss #career #leadership #culture
11
Comments
2 min read
The long over-due commit of Open Source
lirantal profile

The long over-due commit of Open Source

8
Comments
1 min read
git workflows - between forks, squash and rebase
lirantal profile

git workflows - between forks, squash and rebase

#discuss #git #github #devops
11
Comments 3
1 min read
Securing a Node.js + RethinkDB + TLS setup on Docker containers
lirantal profile

Securing a Node.js + RethinkDB + TLS setup on Docker containers

#node #rethinkdb #tls #docker
16
Comments
3 min read
Node.js Yarning for Local Packages
lirantal profile

Node.js Yarning for Local Packages

#yarn #npm #node
5
Comments
2 min read
loading...