How to Fix NPM Vulnerabilities Quickly and Painlessly

Presented by

Shiri Arad Ivtsan, Director of Product at WhiteSource

About this talk

One of the biggest pain points in managing application security—and open source security in particular—is the quick remediation of open source vulnerabilities. To address this challenge, DevSecOps tools and practices are increasingly being put in place to ensure that application security is addressed from the earliest stages of the software development life cycle. To gain insight into accelerating remediation without slowing down the development process, we analyzed WhiteSource data on vulnerable NPM packages, one of the most widely used package ecosystems in the open source community and commercial projects. Join us to learn about typical time frames for NPM vulnerability detection and how to find the quickest and least painful path to remediation.
Related topics:

More from this channel

Upcoming talks (7)
On-demand talks (41)
Subscribers (16952)
Mend, formerly known as WhiteSource, effortlessly secures what developers create. Mend uniquely removes the burden of application security, allowing development teams to deliver quality, secure code, faster. With a proven track record of successfully meeting complex and large-scale application security needs, the world’s most demanding software developers rely on Mend. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, link here, the open-source automated dependency update project. For more information, visit, the Mend blog, and Mend on LinkedIn and Twitter.