Software security expert Tanya Janca, author of Alice and Bob Learn Secure Coding and Staff DevRel at AppSec company Semgrep, joins Ryan to talk about secure coding practices. Tanya unpacks the significance of input validation, the challenges of trusting data sources, and the intersection of security and law. Bonus: what she learned trying to secure a Canadian national election.
Semgrep is an AppSec platform that lets devs deploy static application security testing (SAST), software composition analysis (SCA), and secret scans. Explore their docs.
Tanya is the author of Alice and Bob Learn Secure Coding and Alice and Bob Learn Application Security.
She’s also written for our blog:Three layers to secure a software development organization and Continuous delivery, meet continuous security.
Secure coding might be an issue of national security.
Follow Tanya on LinkedIn or check out her website.
Stack Overflow user Reishin earned a Populist badge with their answer to piping from stdin to a python code in a bash script.