Homepage
Open in app
Sign in
Get started
^Lift Security
^Lift has been acquired by npm, Inc. to build a range of security projects to help companies develop JavaScript securely. You can see what we’re up to at npmjs.com and at blog.npmjs.org.
Follow
npm, Inc. acquires ^Lift Security and the Node Security Platform
npm, Inc. acquires ^Lift Security and the Node Security Platform
Today, npm, Inc. announced its acquisition of the team and assets of ^Lift Security, including ^Lift’s work on the Node Security Platform…
npm, Inc.
Apr 10, 2018
Bypassing npm / yarn ignore-scripts with Command Injection in package.json
Before you read this post please run git --version and if it’s not 2.14.1 or greater then please go upgrade it.
Adam Baldwin
Aug 10, 2017
Announcing Security for Founders: Node.js Edition — a one-day intensive class
As a startup, where might your organization get the biggest bang for your buck when it comes to security?
Adam Baldwin
May 22, 2017
In Memory Backdoor for Node.js Express Apps
In Memory Backdoor for Node.js Express Apps
Earlier this week Zach Grace published an article on one way that you could backdoor a Node.js Express application without touching disk…
Adam Baldwin
Mar 3, 2017
Wordpress Caching Issues: Denial of Wallet
Denial of Service through Disk Space Exhaustion
Nicholas Starke
Feb 24, 2017
Compromising Node.js apps using Man-in-the-Middle
Just before the New Years I published 140+ advisories on Node.js modules. I’ve been researching ways to compromise developers & node.js…
Adam Baldwin
Jan 13, 2017
Make your site more secure than Rudy Giuliani’s security firm
Make your site more secure than Rudy Giuliani’s security firm
Shortly after it was announced that Rudy Giuliani would advise the Trump administration on cybersecurity, his own security firms website…
Adam Baldwin
Jan 13, 2017
Scoping for your first security assessment
Scoping for your first security assessment
This post is part of a series and you might want to read Preparing for your First Security Assessment first.
Nicholas Starke
Jan 12, 2017
Preparing for your first security assessment
Chances are if you’ve built a software product or service you’ll want to book a firm to perform a security assessment of your application…
Nicholas Starke
Dec 5, 2016
We’re donating the Node Security Project to the Node.js Foundation
We are excited to announce that today ^Lift Security and &yet are donating the Node Security Project and its data to the Node Foundation.
Adam Baldwin
Nov 29, 2016
About ^Lift Security
Latest Stories
Archive
About Medium
Terms
Privacy
Teams