Liran Tal
Snyk
|liran_talHacking AI Applications
You build applications using Generative AI and LLM frameworks for your JavaScript apps. Hurray! I sure hope you didn’t forget this tiny little thing called application security :-) Join me in this session, where we uncover imminent security vulnerabilities from basics to hands-on live hacking and demonstrate real-world insecure JavaScript code mistakes as we hack in the IDE and unleash exploit payloads that compromise AI-generated code. You’ll learn and experience prompt injection, LLM agents with excessive access, code vulnerabilities introduced via IDE auto-suggest tools, and how LLM sources turn into an imminent security risk.
Bio
Liran Tal is an award-winning software developer, security researcher, and open-source champion in the JavaScript community. He's an internationally recognized GitHub Star, acknowledged for his open-source advocacy, and has received the OpenJS Foundation's Pathfinder for Security for his work on Node.js security. His contributions to developer security education include leading OWASP projects, building supply chain security tools, participating in CNCF and OpenSSF initiatives, and authoring books such as O'Reilly's Serverless Security. He leads the developer advocacy team at Snyk.io and is on a mission to empower developers with better application security skills.