In this episode, we dig into two things the security community loves to argue about: npm finally doing the right thing and whether STRIDE has any business being called dead. The npm v12 changes gate dangerous install script behavior by default, which is a good step forward and also about a decade overdue. Then we wade into a hot take claiming that STRIDE was built for a world that no longer exists, and we push back hard on the idea that non-deterministic AI systems need an entirely new threat-modeling religion rather than a better understanding of the one we already have. Also: wheat, Oregon Trail, and Emacs.
đ Join the Conversation  If your threat model failed because of an AI hallucination, was that STRIDE's fault or yours?
Podden och tillhörande omslagsbild pÄ den hÀr sidan tillhör
Izar Tarandach, Matt Coles, and Chris Romeo. InnehÄllet i podden Àr skapat av Izar Tarandach, Matt Coles, and Chris Romeo och inte av,
eller tillsammans med, Poddtoppen.