April 12, 2017 - Red Hat Developer

Using Snyk, NSP and Retire.JS to Identify and Fix Vulnerable Dependencies in your Node.js Applications

By Tom Jackman April 12, 2017April 7, 2017

Introduction

Dependency management isn’t anything new, however, it has become more of an issue in recent times due to the popularity of frameworks and languages, which have large numbers of 3rd party plugins and modules. With Node.js, keeping dependencies secure is an ongoing and time-consuming task because the majority of Node.js projects rely on publicly available modules or libraries to add functionality. Instead of developers writing code, they end up adding a large number of libraries to their applications. The major benefit of this is the speed at which development can take place. However, with great benefits can also come great pitfalls, this is especially true when it comes to security. As a result of these risks, the Open Web Application Security Project (OWASP) currently ranks “Using Components with Known Vulnerabilities” in the top ten most critical web application vulnerabilities in their latest report.

Continue reading “Using Snyk, NSP and Retire.JS to Identify and Fix Vulnerable Dependencies in your Node.js Applications”

Perform hands-on, real-world IoT development at the Red Hat Summit IoT CodeStarter

By Benjamin Cabé April 12, 2017April 12, 2017

What happens when you have expensive industrial equipment that needs to be moved from point A to point B and you want to anticipate all that could happen in the process: improper handling, power failure, or even thievery? How do you collect data from its various sensors (vibration, humidity, etc.) to make sure your equipment is operating properly? How do you provide connectivity so that all the way from point A to point B, your asset is reporting to a backend server to allow for remote tracking? What kind of backend system should you rely on for collecting and making use of the information that you will be collecting?

Join this year’s Red Hat Summit IoT CodeStarter [1] to experience – live! – the capabilities of open source projects such as Eclipse Kura and Eclipse Kapua for creating efficient and easy-to-maintain IoT solutions for asset management.

Continue reading “Perform hands-on, real-world IoT development at the Red Hat Summit IoT CodeStarter”

Red Hat Summit 2017 – Planning your Cloud and Containers Labs

By Eric D. Schabell April 12, 2017November 15, 2018

This year in Boston, MA you can attend the Red Hat Summit 2017, the event to get your updates on open source technologies and meet with all the experts you follow throughout the year.

It’s taking place from May 2-4 and is full of interesting sessions, keynotes, and labs.

This year I was part of the process of selecting the labs you are going to experience at Red Hat Summit and wanted to share them to help you plan your cloud and containers labs experience. These labs are for you to spend time with the experts who will teach you hands-on and how to get the most out of development with containers and in the Cloud using products like OpenShift Container Platform.

Each lab is a 2-hour session, so planning is essential to getting the most out of your days at Red Hat Summit.

As you might be struggling to find and plan your sessions together with some lab time, here is an overview of the labs, you can find the exact room and times in the session catalog. Each entry includes the lab number, title, abstract, instructors, and is linked to the session catalog entry:

Continue reading “Red Hat Summit 2017 – Planning your Cloud and Containers Labs”

Blog Articles

Using Snyk, NSP and Retire.JS to Identify and Fix Vulnerable Dependencies in your Node.js Applications

Introduction

Perform hands-on, real-world IoT development at the Red Hat Summit IoT CodeStarter

Red Hat Summit 2017 – Planning your Cloud and Containers Labs

40+ Cloud Native Development sessions/labs/demos at Red Hat Summit