Montreal's JavaScript User Group

June 12th, 2018 @ 19:00
Get ready to generate!

Genrators and security, a wonderful combination.

Jason McCarrell
The Power of Generators

From abstracted testing to streaming data, generators provide a convenient framework for dealing with code step by step. We’ll look at why you should care about generators, how they work, when they should be used, and finally some fun things I’ve done with them.

Olivier Arteau
Prototype pollution attacks in NodeJS applications

Prototype pollution is a term that was coined many years ago in the JavaScript community to designate libraries that added extension methods to the prototype of base objects like "Object", "String" or "Function". This was very rapidly considered a bad practice as it introduced unexpected behavior in applications. In this presentation, we will analyze the problem of prototype pollution from a different angle. What if an attacker could pollute the prototype of the base object with his own value? What APIs allow such pollution? What can be done with it?

La Gare: A beautiful collaborative workspace in the Mile End.

Join us on meetup.com
→ to be notified of our events.