The Stack Overflow Podcast   /     Secure coding beyond just memory safety

Summary

Software security expert Tanya Janca, author of Alice and Bob Learn Secure Coding and Staff DevRel at AppSec company Semgrep, joins Ryan to talk about secure coding practices. Tanya unpacks the significance of input validation, the challenges of trusting data sources, and the intersection of security and law. Bonus: what she learned trying to secure a Canadian national election.

Subtitle
Software security expert Tanya Janca, author of Alice and Bob Learn Secure Coding and Staff DevRel at AppSec company Semgrep, joins Ryan to talk about secure coding practices. Tanya unpacks the significance of input validation, the challenges of trustin
Duration
00:34:14
Publishing date
2025-03-04 05:20
Link
https://stackoverflow.blog/podcast/
Contributors
  Tanya Janca, Ryan Donovan
author  
Enclosures
https://pdrl.fm/c28362/injector.simplecastaudio.com/6fa1d34c-502b-4abf-bd82-483804006e0b/episodes/a52d4c66-d1f6-4fe3-9e7a-305e750a8ebd/audio/128/default.mp3?aid=rss_feed&awCollectionId=6fa1d34c-502b-4abf-bd82-483804006e0b&awEpisodeId=a52d4c66-d1f6-4fe3-
audio/mpeg

Shownotes

Semgrep is an AppSec platform that lets devs deploy static application security testing (SAST), software composition analysis (SCA), and secret scans. Explore their docs.

Tanya is the author of Alice and Bob Learn Secure Coding and Alice and Bob Learn Application Security.

She’s also written for our blog:Three layers to secure a software development organization and Continuous delivery, meet continuous security.

Secure coding might be an issue of national security

Follow Tanya on LinkedIn or check out her website.

Stack Overflow user Reishin earned a Populist badge with their answer to piping from stdin to a python code in a bash script.