|
1 | 1 | 00:00:00 What do developers need to know about AppSec and building secure software? |
2 | 2 |
|
3 | | -00:00:03 We have Tanya Janka, aka SheHacksPurple, on the show to tell us all about it. |
| 3 | +00:00:03 We have Tanya Janca, aka SheHacksPurple, on the show to tell us all about it. |
4 | 4 |
|
5 | 5 | 00:00:09 We talk about what developers should expect from threat modeling sessions, |
6 | 6 |
|
|
28 | 28 |
|
29 | 29 | 00:00:57 Subscribe to our YouTube channel over at talkpython.fm/youtube and get notified about upcoming shows. |
30 | 30 |
|
31 | | -00:01:04 This episode is sponsored by PositConnect from the makers of Shiny. |
| 31 | +00:01:04 This episode is sponsored by Posit Connect from the makers of Shiny. |
32 | 32 |
|
33 | 33 | 00:01:08 Publish, share, and deploy all of your data projects that you're creating using Python. |
34 | 34 |
|
35 | 35 | 00:01:13 Streamlit, Dash, Shiny, Bokeh, FastAPI, Flask, Quarto, Reports, Dashboards, and APIs. |
36 | 36 |
|
37 | | -00:01:19 PositConnect supports all of them. |
| 37 | +00:01:19 Posit Connect supports all of them. |
38 | 38 |
|
39 | | -00:01:22 Try PositConnect for free by going to talkpython.fm/Posit. |
| 39 | +00:01:22 Try Posit Connect for free by going to talkpython.fm/Posit. |
40 | 40 |
|
41 | 41 | 00:01:27 P-O-S-I-T. |
42 | 42 |
|
|
128 | 128 |
|
129 | 129 | 00:03:33 Hacks is interesting. |
130 | 130 |
|
131 | | -00:03:36 And Canada. |
| 131 | +00:03:36 And Tanya. |
132 | 132 |
|
133 | 133 | 00:03:36 Tell us about yourself. |
134 | 134 |
|
|
344 | 344 |
|
345 | 345 | 00:07:55 modeling and what are some of the takeaways? |
346 | 346 |
|
347 | | -00:07:57 Obviously our audience here is largely Python developers, data scientists, and a ginormous assorted |
| 347 | +00:07:57 Obviously our audience here is largely Python developers, data scientists, and a enormous assorted |
348 | 348 |
|
349 | 349 | 00:08:05 other that sort of orbits around those spaces. |
350 | 350 |
|
|
776 | 776 |
|
777 | 777 | 00:20:07 And I was like, yeah, but they're right and we're wrong this time. |
778 | 778 |
|
779 | | -00:20:11 Because sometimes the security team's being so completely unflexible. |
| 779 | +00:20:11 Because sometimes the security team's being so completely inflexible. |
780 | 780 |
|
781 | 781 | 00:20:16 And I'm like, listen, this is like a minute risk if you really think about it. |
782 | 782 |
|
|
2338 | 2338 |
|
2339 | 2339 | 00:58:22 So if you're just doing select statements, just do a read-only user. |
2340 | 2340 |
|
2341 | | -00:58:25 If you're doing CRED, create, read, update, delete, then you should use a read-write user. |
| 2341 | +00:58:25 If you're doing CRUD, create, read, update, delete, then you should use a read-write user. |
2342 | 2342 |
|
2343 | 2343 | 00:58:31 But DBO is not almost ever actually needed, if we think about it. |
2344 | 2344 |
|
|
2817 | 2817 | 01:09:04 Now get out there and write some Python code. |
2818 | 2818 |
|
2819 | 2819 | 01:09:20 I'll see you next time. |
2820 | | - |
0 commit comments