Fashionable software program depends closely on open supply dependencies, usually pulling in 1000’s of packages maintained by builders all around the world. This accelerates innovation but additionally creates severe provide chain dangers as attackers more and more compromise fashionable libraries to unfold malware at scale.
Feross Aboukhadijeh is the founder and CEO of Socket which is a safety platform designed to guard software program tasks from open supply provide chain assaults. On this episode he joins Josh Goldberg to speak about his profession in open supply, open supply provide chain assaults, sensible safety classes, the increasing assault floor in software program improvement, and extra.
Josh Goldberg is an impartial full time open supply developer within the TypeScript ecosystem. He works on tasks that assist builders write higher TypeScript extra simply, most notably on typescript-eslint: the tooling that permits ESLint and Prettier to run on TypeScript code. Josh recurrently contributes to open supply tasks within the ecosystem equivalent to ESLint and TypeScript. Josh is a Microsoft MVP for developer applied sciences and the writer of the acclaimed Studying TypeScript (O’Reilly), a cherished useful resource for any developer in search of to be taught TypeScript with none prior expertise exterior of JavaScript. Josh recurrently presents talks and workshops at bootcamps, conferences, and meetups to share data on TypeScript, static evaluation, open supply, and normal frontend and internet improvement.
Sponsors
Is your AI mannequin taking weeks to coach? Or is it too sluggish for real-time inference? Fixstars AI Booster is the acceleration platform that solves each. AI Booster robotically analyzes and optimizes your complete AI pipeline. The end result? Dramatically sooner coaching – as much as 5x sooner, and compute prices slashed by as much as 80%. Trusted by main firms together with Sony Honda Mobility. Cease ready in your {hardware}. Go to fixstars.com to learn the way
Capital One’s proprietary AI options are constructed on their trendy tech stack. Their engineering groups are utilizing real-time knowledge at scale, utilized analysis, and the facility of cloud platform standardization and automation to embed customer-driven AI options all through their enterprise.
