intrinsic

This post will be covering security vulnerabilities introduced into an application by way of code written by a third party.

Let’s look at how to secure a Node.js application using Intrinsic.

The Node.js Security Working Group was formed in early 2017 to help develop security policy and procedures for the Node.js project and…

A look at the optional, user-definable methods which will be called when performing various actions upon JavaScript objects.

Hi, I’m Devon Rifkin, CTO at Intrinsic. Last month, Christian Almenar (our CEO) and I were very excited to give a security talk at PayPal’s…

An overview of advanced JavaScript Object features such as Property Descriptors, Proxies, and Preventing Extension.

There are several reasons why one should not directly expose a Node.js process to the web and should instead hide it behind a reverse proxy.

Symbols, the newest JavaScript primitive, bring a few benefits to the language and are particularly useful when used as object properties.

Package Diff is a tool for displaying visual diffs between published releases of an npm package. GitHub cannot reliably display such a…

A cat-and-mouse narrative for securing a browser-based API.

Ownership of a popular npm package, event-stream, was transferred by the original author to a malicious user.