Olivia
Online
Node.js Security
@nodesecurity
Security team at @npmjs tweeting about JavaScript security.
Oakland, CA
Joined February 2013
3 Following
11K Followers
776 Posts
Pinned Tweet
Automating Vulnerable Dependency Checking in CI Using Open Source by @varrunr
https://t.co/hY4D6fjny5
it’s official! we’re now a part of @github. excited for the next chapter of npm: https://t.co/j19Tv3VLsI
Who to follow
Node.js 
@nodejs
The Node.js JavaScript Runtime. 🐢🚀 Need help with Node.js? We've got a repo for that: https://t.co/BaCSQqilHm
John-David Dalton
@jdalton
Lodash creator • sometimes TC39 delegate • protecting supply chains at https://t.co/eYz05o0Rgu • Ex (Bun, Salesforce, Node core, Electron WG, Microsoft)
npm
@npmjs
The package manager for JavaScript
Problems? Visit https://t.co/WNuo1MMbMP or https://t.co/i3MoAdr5p5
Going live at 9AM PT! Will be talking about JavaScript ecosystem security and solutions you can get involved in.
Did you ever want to know how a pentester makes their way from bug to exploit? Read about how @truesec found and exploited a bug in hot-formula-parser (CVE-2020-6836)
https://t.co/vopwYujwBF
Please update your npm cli to v6.13.4 as soon as you can.
npm i npm -g
https://t.co/jVRZdRXqU9
Great writeup about a remote code execution (RCE) vulnerability in the Strapi framework and the quick response by the Strapi team. https://t.co/dWdzlhFb1d
the npm security team has been hard at work building infrastructure to do behavioral analysis of npm packages at scale. vp of security, @adam_baldwin, explains what this entails (+ a sneak peek at the security insights API): https://t.co/cjgDSgIwTx
This Node.js Best Practices guide by @nodepractices has some great security guidance.
https://t.co/q1omG4DC38
Recent Study Estimates That 50% of Websites Using WebAssembly Apply It for Malicious Purposes
https://t.co/X62z6jm98q
We get a lot of requests from people wanting to do research around malware in the Registry. It will be really exciting to see what the community does with this data!
Did you miss us? Well we're back and tweeting. The npm security team has taken over the nodesecurity twitter account and will be keeping you up to date on JavaScript security related happenings.
The Daily Swig speaks to npm’s @adam_baldwin about improving security for the world’s biggest repository of open source software packages
https://t.co/2xi6QEJmUn
The Node Security Platform Service is shutting down tomorrow:
https://t.co/F6ThtOVI61
On 9/30 the Node Security Platform will stop working. Here’s what you can do:
https://t.co/F6ThtOVI61
The Node Security Platform is shutting down on 9/30: https://t.co/F6ThtOVI61
JavaScript’s definitive listing of known package vulnerabilities is moving to @npmjs Here’s how to use it:
https://t.co/F6ThtOVI61
Are you prepared to move on from the Node Security Platform service? Here’s what you can do:
https://t.co/F6ThtOVI61
🔒node.js security release, time to update. https://t.co/DSwwqYZna3
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers