Products
Stack Overflow for Teams
Capture, share, & collaborate on knowledge internally.
Advertising
Promote your product or service to developers and technologists.
Talent
Engage the world’s technology talent with your employer brand.

Secure coding beyond just memory safety

Software security expert Tanya Janca, author of Alice and Bob Learn Secure Coding and Staff DevRel at AppSec company Semgrep, joins Ryan to talk about secure coding practices. Tanya unpacks the significance of input validation, the challenges of trusting data sources, and the intersection of security and law. Bonus: what she learned trying to secure a Canadian national election.

Article hero image
Credit: Alexandra Francis

Semgrep is an AppSec platform that lets devs deploy static application security testing (SAST), software composition analysis (SCA), and secret scans. Explore their docs.

Tanya is the author of Alice and Bob Learn Secure Coding and Alice and Bob Learn Application Security.

She’s also written for our blog:Three layers to secure a software development organization and Continuous delivery, meet continuous security.

Secure coding might be an issue of national security.

Follow Tanya on LinkedIn or check out her website.

Stack Overflow user Reishin earned a Populist badge with their answer to piping from stdin to a python code in a bash script.

TRANSCRIPT

Add to the discussion

Login with your stackoverflow.com account to take part in the discussion.