In relation to deployments, DevOps culture has helped unify Developers and Operations. However, what has DevOps culture done for security?
Security is often seen as “another engineer’s” problem. But all too often, security issues result from missteps at multiple layers of the stack. In this talk, we will focus on one of the most pervasive full stack security risks: code injection.
In particular, there will be an emphasis on:
- React.js, Node.js, Amazon Web Services injection risks
- How does a Frontend / Backend / DevOps Engineer mitigate injection risks?
- Suggestions for tools that automate injection discovery/mitigation