Rafael Gonzaga

Join me on a journey to explore the creation of the Node.js Permission Model (--experimental-permission). As a Node.js TSC member and chair of the Node.js Security Team, I'll share the challenges, plans, and details of this experimental security feature. In this talk, I will uncover the motivations behind the Node.js Permission Model and the collaborative efforts that made it a reality. I'll share real-world examples and stories that highlight the obstacles we faced and the creative solutions we found. Join me on this journey toward a more secure Node.js ecosystem. Whether you're a developer, security enthusiast, or part of the Node.js community, this talk will help you gain insights and contribute to the ongoing evolution of Node.js security.