25 au 27 février, 2026
Montréal, Canada

Ghosts in the Machine: Tampering with the JS Supply Chain

  1. Accueil
  2. Montréal 2026
  3. Sessions

JavaScript Securité

26 February 2026 @ 09:00
ST-Laurent 4
Session en Anglais - Débutant

Partager sur Twitter Partager sur Facebook

What if the code you’re shipping isn’t yours anymore? The scariest JavaScript bugs don’t always come from your team, they come from open-source packages that have been possessed. This talk digs deep into the dark world of supply chain tampering: what it looks like, how it happens, and what modern devs can do to protect themselves. We’ll talk tamper detection, package provenance, lockfile integrity, and even how to set up GitHub Actions.

Voir les 193 présentations

Chris DeMars

Chris DeMars

TuxCare

Chris DeMars is a Senior Developer Advocate. He has over 20 years of technical experience and speaks globally on various frontend topics and has received accolades for his community contributions, including the prestigious Microsoft MVP and Progress Champion awards to name a few. Chris is passionate about enhancing web development and helping developers achieve their goals. In his free time, he enjoys rating Detroit-style pizza, searching for Bigfoot, and investigating UFO's.

Read More

Commandité par

Devenir commanditaire
© 2010-2026 ConFoo. Tous droits réservés. Code de conduite