logo
episode-header-image
Nov 2024
1h 9m

#485: Secure coding for Python with SheH...

MICHAEL KENNEDY
About this episode
What do developers need to know about AppSec and building secure software? We have Tonya Janca (AKA SheHacksPurple) on the show to tell us all about it. We talk about what developers should expect from threat modeling events as well as concrete tips for security your apps and services.

Episode sponsors

Posit
Bluehost
Talk Python Courses

Links from the show

Tanya on X: @shehackspurple
She Hacks Purple website: shehackspurple.ca
White House recommends memory safe languages: whitehouse.gov
Python Developer Survey Results: jetbrains.com
Bandit: github.com
Semgrep Academy: academy.semgrep.dev
Watch this episode on YouTube: youtube.com
Episode transcripts: talkpython.fm

--- Stay in touch with us ---
Subscribe to us on YouTube: youtube.com
Follow Talk Python on Mastodon: talkpython
Follow Michael on Mastodon: mkennedy
Up next
May 5
#504: Developer Trends in 2025
What trends and technologies should you be paying attention to today? Are there hot new database servers you should check out? Or will that just be a flash in the pan? I love these forward looking episodes and this one is super fun. I've put together an amazing panel: Gina Häußge ... Show More
1h 9m
Apr 28
#503: The PyArrow Revolution
Pandas is at a the core of virtually all data science done in Python, that is virtually all data science. Since it's beginning, Pandas has been based upon numpy. But changes are afoot to update those internals and you can now optionally use PyArrow. PyArrow comes with a ton of be ... Show More
1h 8m
Apr 21
#502: Django Ledger: Accounting with Python
Do you or your company need accounting software? Well, there are plenty of SaaS products out there that you can give your data to. but maybe you also really like Django and would rather have a foundation to build your own accounting system exactly as you need for your company or ... Show More
1h 3m
Recommended Episodes
Nov 2024
SN 1000: One Thousand - Windows Server 2025, Malicious Python Typos
Did Bitwarden go closed-source? The rights of German security researchers are clarified. Australia to impose age limits on social media. Free Windows Server 2025 anyone? UAC wasn't getting in the way enough, so they're fixing that. "From Russia with fines" -- obey or else. South ... Show More
2h 17m
Feb 2022
127: AI for Code with Eran Yahav
Brief Summary: Programming is difficult as it is, but imagine how difficult it was without all the current tools, compilers, synthesizers, etc. that we have today. Eran Yahav, Chief Technology Officer at Tabnine shares how AI is currently helping with code writing and how it coul ... Show More
1h 8m
Jul 2024
Episode 80: Pwn2Own VS H1 Live Hacking Event (feat SinSinology)
Episode 80: In this episode of Critical Thinking - Bug Bounty Podcast Justin is joined by Sina Kheirkhah to talk about the start of his hacking journey and explore the differences between the Pwn2Own and HackerOne EventsFollow us on twitter at: @ctbbpodcastWe're new to this podca ... Show More
2h 49m
Nov 2024
SN 999: AI Vulnerability Discovery - RT's AI TV Hosts, Windows 10 Updates
Google's record-breaking fine by Russia. (How many 0's is that?) RT's editor-in-chief admits that their TV hosts are AI-generated. Windows 10 security updates set to end next October... or are they? When a good Chrome extension goes bad. Windows .RDP launch config files. What cou ... Show More
1h 53m
Nov 2024
Episode 98: Team 82 Sharon Brizinov - The Live Hacking Polymath
Episode 98: In this episode of Critical Thinking - Bug Bounty Podcast Justin Gardner sits down with Sharon,to discuss his journey from early iOS development to leading a research team at Claroty. They address the differences between HackerOne and Pwn2Own, and talk through some in ... Show More
1h 43m
May 2024
SN 972: Passkeys: A Shattered Dream? - IoT Default Passwords, Passkeys
GCHQ: No more default passwords for consumer IoT devices! What happened with Chrome and 3rd-party cookies? Race conditions and multi-threading GM "accidentally" enrolled millions into "OnStar Smart Driver +" program Steve recommends Ryk Brown's "Frontiers Saga" SpinRite update Pa ... Show More
2h 11m
Jun 2024
Unlocking the Secrets of AI in Tech with April Yoho
Join hosts Charles William Carpenter III and Adam Argyle for a riveting episode of 'Whiskey Web and Whatnot' featuring guest April Yoho. Based in the UK and a seasoned developer advocate, April shares her extensive 25+ years of experience in tech while indulging in a tasting sess ... Show More
39m 44s
Oct 2024
The 2024 Stack Overflow Developer Survey with Erin Yepis and Ryan Polk
The Stack Overflow Developer Survey is an annual survey conducted by Stack Overflow that gathers comprehensive insights from developers around the world. It offers a valuable snapshot of the global developer community, covering a wide range of topics such as preferred programming ... Show More
39m 33s
Oct 2024
Balancing Code and Wellbeing: Michelle Bakels on React and Developer Health
This week, Robbie and Chuck talk with Michelle Bakels, Program Director at G2i and co-organizer of React Miami. They cover a range of topics, from developer health initiatives to the challenges of organizing a growing tech conference. They also discuss their experiences with Reac ... Show More
56m 37s
Sep 2024
819: PyTorch: From Zero to Hero, with Luka Anicin
SuperDataScience veteran and Udemy teacher Luka Anicin is on the podcast to talk about his brand-new course, “PyTorch: From Zero to Hero”, available exclusively on superdatascience.com. Host Jon Krohn asks Luka why he feels that every data scientist should consider PyTorch as the ... Show More
1h 6m
Listen to millions of songs and podcasts on Anghami