Liran Tal 

@[email protected]
678 Followers
288 Following
2.2K Posts

🌟 GitHub Star 2022
🏆 OpenJS Pathfinder award for Security 2022
🥑 DevRel at @snyksec
@NodeJS AppSec & OpenSource ❤️
O'Reilly author on Serverless JavaScript Security
Docker container security hero 🐳

Author of Node.js Security 👉 bit.ly/node-security
Author of Security Headers 👉 bit.ly/http-security

Interests:
#OpenSource #NodeJS #AppSec #JavaScript #Containers #Docker #SupplyChainSecurity #Snyk #OWASP #GitHub #DevSecOps #DevRel #CNCF #OpenSSF #OpenJSF

Websitehttps://lirantal.com
GitHubhttps://github.com/lirantal
Twitterhttps://twitter.com/liran_tal
Node.js Secure Codinghttps://www.nodejs-security.com/
Liran Tal 7h ago
well let me tell you a story about LiteLLM
Liran Tal 14h ago

reminding you again that you should be EXTREMELY WORRIED when doing technical interviews as a developer

phishing and backdoor'ing you as an engineer has become a classic supply chain security malware campaign employed by various groups and inclusive of nation state pillar

Liran Tal 1d ago
folks we going exponential with repolyze
Liran Tal 1d ago
open source ftw
even more importantly so when it is driven by AI agents
Liran Tal 2d ago

oh hah, the RCE security vulnerability article for Anthropic MCP SDK from thehackernews (https://thehackernews.com/2026/04/anthropic-mcp-design-vulnerability.html) drops a mention to one of my earlier CVEs

what a fun random moment :D

Liran Tal 3d ago
why you say claude code source leaked when it was right here all this time?? 😆
Liran Tal 3d ago
funny how Theo is talking about tokenization in his latest video and I was just coincidentally building token-compare to compare tokenized text side-by-side just last week: https://token-compare.pages.dev
Liran Tal 4d ago
Google Trends for OSSINT and cyber signals is underrated, bookmark for next time ;-)
Liran Tal 5d ago
thankful for little web assets like colors website that helped me pick a nice palette for a new CLI terminal theme
Liran Tal 6d ago

the express web framework repo analyzed quickly for contributor count and potential security hotspots and weak points

can give you a log of where to focus your research
wdyt? (this is the cli that runs this https://github.com/lirantal/repolyze)