Trendy software program depends closely on open supply dependencies, usually pulling in hundreds of packages maintained by builders everywhere in the world. This accelerates innovation but additionally creates severe provide chain dangers as attackers more and more compromise common libraries to unfold malware at scale.
Feross Aboukhadijeh is the founder and CEO of Socket which is a safety platform designed to guard software program initiatives from open supply provide chain assaults. On this episode he joins Josh Goldberg to speak about his profession in open supply, open supply provide chain assaults, sensible safety classes, the increasing assault floor in software program improvement, and extra.
Josh Goldberg is an impartial full time open supply developer within the TypeScript ecosystem. He works on initiatives that assist builders write higher TypeScript extra simply, most notably on typescript-eslint: the tooling that permits ESLint and Prettier to run on TypeScript code. Josh commonly contributes to open supply initiatives within the ecosystem reminiscent of ESLint and TypeScript. Josh is a Microsoft MVP for developer applied sciences and the writer of the acclaimed Studying TypeScript (O’Reilly), a cherished useful resource for any developer looking for to study TypeScript with none prior expertise outdoors of JavaScript. Josh commonly presents talks and workshops at bootcamps, conferences, and meetups to share information on TypeScript, static evaluation, open supply, and normal frontend and internet improvement.
Sponsors
Is your AI mannequin taking weeks to coach? Or is it too gradual for real-time inference? Fixstars AI Booster is the acceleration platform that solves each. AI Booster robotically analyzes and optimizes your complete AI pipeline. The outcome? Dramatically quicker coaching – as much as 5x quicker, and compute prices slashed by as much as 80%. Trusted by main firms together with Sony Honda Mobility. Cease ready in your {hardware}. Go to fixstars.com to learn the way
Capital One’s proprietary AI options are constructed on their trendy tech stack. Their engineering groups are utilizing real-time knowledge at scale, utilized analysis, and the facility of cloud platform standardization and automation to embed customer-driven AI options all through their enterprise.
