This video was recorded at Code BEAM SF 2020 - http://bit.ly/2wpn0SM Get involved in Code Sync's next conference - http://bit.ly/2Mcm4aS --- DIFFING HEX PACKAGES by Johanna Larsson THIS TALK IN THREE WORDS: Security Dependencies Hex TALK LEVEL: All ABSTRACT The tech industry is extremely dependent on open source packages. But every dependency you rely on is also a vulnerability. Multiple high profile packages across platforms have been hijacked and modified with malicious code. This talk is about the value of auditing dependency updates and the tooling to make it less of a chore, including the introduction of a web-based diffing app and other tooling that helps you create an effortless auditing process. Slides & full abstract: https://codesync.global/speaker/johanna-larsson/ --- THE SPEAKER - JOHANNA LARSSON Contributed to Elixir core that one time Johanna is a polyglot developer working with anything from edge computing to data processing pipelines. Outside of work she's a co-organiser and frequent speaker at the Malmo Elixir meetup and spends a bit too much time on the Elixir slack. More on Johanna Larsson: https://codesync.global/speaker/johanna-larsson/ --- CODE SYNC & CODE BEAM SF 2020 Code BEAM SF is powered by Code Sync. Code BEAM SF 2020 was sponsored by WhatsApp, The RealReal, PepsiCo, Erlang Ecosystem Foundation, Erlang Solutions, WhiteSource, 2600Hz, Simpli.fi, Tubi, Pleroma, and Mux. CODE SYNC Website: www.codesync.global Twitter: www.twitter.com/CodeBEAMio Facebook: https://www.facebook.com/CodeSyncGlobal LinkedIn: https://www.linkedin.com/company/code-sync/ Mail: info at codesync.global #Hex #Security #CodeBEAMSF