Celebrating Community: My Journey to Receiving the GitHub Stars 2023 Award
Reflecting on the spirit of the GitHub Stars award and capturing the essence of the journey towards the recognition and open source community engagement.
๐ Hi there, I'm Liran Tal
Known for his open source and JavaScript security initiatives, Liran Tal is an award-winning software developer, security researcher, and open source champion in the JavaScript community. He's an internationally recognized GitHub Star, acknowledged for his open source advocacy, and has received the OpenJS Foundation's Pathfinder for Security for his work on Node.js security. His contributions to developer security education include leading OWASP projects, building supply chain security tools, participation in CNCF and OpenSSF initiatives, and authoring books such as O'Reilly's Serverless Security. He leads the developer advocacy team at Snyk.io and is on a mission to empower developers with better application security skills.
Friends share feedback
Testimonials from social media
-
Luciano MamminoAuthor of Node.js Design PatternsFANTASTIC WORKSHOP! Learned a ton! Thanks a lot ๐
-
Caleb QueernDevSecOps at KPMG Cyber Security๐ Wow what great work from @HTTPArchive on the 2022 Web Almanac's Security chapter! Nice job @_clarkio, @liran_tal, @Saptak013 https://almanac.httparchive.org/en/2022/security Lots of detailed analysis of progress and opportunities to better secure the web
-
Jim ManicoOWASP LeaderWhat an honor. Thank you Liran. Some people talk about AppSec (me) and some people really dig in and do the work (you). Iโm a big fan. ๐ค๐ป
-
Rob WhittakerDirector of Software DevelopmentThis is an excellent little article by @liran_tal on installing Ruby on macOS for local development. There are plenty of options available to you. (I prefer `asdf`.) The most important thing is not to use the system Ruby.
-
Jose AguinagaHead of Engineering at @hoprnetThis is one of the best guides I've seen on this topic, really cool stuff. Definitely going to take a look at @snyksec's @github action to add it in our @hoprnet project.
-
Dev SharmaSoftware DeveloperThis has become my primary source for learning docker with node. Thanks for sharing these ๐
-
Fernando CarrascosaTech LeadAfter being in a workshop by @liran_tal and realizing that RegExps can be exploited fairly easily, I decided to use a validation library. I even contributed to the @DefinitelyTyped definition of it :D
-
Jan DemelSoftware DeveloperJust watched @liran_tal's talk about path traversal vulnerability @NodeConfEU. It was absolutely amazing! I was always into security issues and learning things from such an expert was an honor!
From the blog
A Comprehensive Guide to Contract Testing APIs in a Service Oriented Architecture
It is likely you experienced the painful situation of deploying to production only to find out that an API service you integrate with hasโฆ
Advanced usage patterns for taking page element screenshots with Playwright
In this post, I will show you some advanced usage patterns for working with Playwright in order to take a screenshot of a specific element and modify the contents of the image, either before taking the screenshot or after, using image preprocessing tools.
Reasons to Love Jest: The Developer Experience
Oh yes. The Developer Experience with Jest is transforming the act of writing tests from a chore to hell of a fun time, promise! ๐ค