Based in San Francisco Bay Area, Securesql is a blog by John Menerick. His insights dissect complex systems, offering a masterclass in cyber guardianship through expert analysis and cutting-edge protective strategies.

Impressive Node.JS vulnerability reduction

John Menerick

In 2013, when I last performed a secure code review on Node.JS, it did not look pretty.

 

Now the vulnerability pie looks like the following;

Impressive change.  Over the coming months, we will dig into the fixes and remediations involved to reduce the risk to the Node.JS community.

Square's encryption service fails to reliably secure passwords

One less hammer in my toolbox