brainlid

brainlid

Podcast: ThinkingElixir 148 - Security Scanning our Apps with Sobelow

We go deeper on the Sobelow library, a security-focused static analysis tool for Elixir and Phoenix apps. We talk with Griffin Byatt, the creator, and Holden Oullette, the new maintainer. We learn how and why the project was created, how it works, what it can and can’t do, and how to use it in CI pipelines for continuous scanning. Sobelow is a cornerstone project in the community that checks a critical box for certification requirements which means we get to use Elixir when it might otherwise be a hard sell. Join us as we learn more about the project and the people behind it!

Most Liked

Cless

Cless

Such a great episode packed with a ton of fantastic news, I recommend people don’t skip this one :slight_smile: I’m particularly thrilled to hear that interviews are gradually coming back (no pressure! :wink:), I didn’t realize how much I would miss them. To sate my addiction I resorted to going through my (tiny) back catalog of unplayed Thinking Elixir episodes, and eventually back to old Elixir Mix episodes! It’s been really fun, actually.

Perhaps even more excited to hear that Podium plans to take a greater leadership role in the Elixir community and ecosystem, that could be huge. I’ve lowkey wished they would for years, dreams really do come true!

Where Next?

Popular in Podcasts Top

brainlid
In episode 89 of Thinking Elixir, we talk about how designing applications with lower friction points is a valuable goal. LiveView plays ...
New
wolf4earth
Ben Moss joins the Mix to discuss Event Sourcing and CQRS in Elixir. Event sourcing is the practice of logging data across logged series ...
New
wolf4earth
Brian Underwood joins the mix to discuss his recent project where he created a game that would push more and more load onto a GenServer t...
New
brainlid
Day 1 and 2 of Livebook’s first launch week announcements, a new JsonSchema compiler named Exonerate, Ecto 3.10.0 brings changeset improv...
New
brainlid
In episode 65 of Thinking Elixir, we talk with Elixir Core Team Member Aleksei Magusev about how he got involved in Elixir, what it’s lik...
New
brainlid
In episode 98 of Thinking Elixir, Dominic Letz did something I thought was impossible. He got an Elixir application packaged up, approved...
New
brainlid
Episode 115 of Thinking Elixir. ElixirConf US 2022 just finished! We cover the big announcements, talk highlights, and other relevant tec...
New
brainlid
In episode 75 of Thinking Elixir, we talk with Dave Lucia about Simplebet’s use of RabbitMQ and Commanded for solving unique real-time pr...
New
brainlid
Some people excitedly talk about the “end of localhost development” when developer machines move to the cloud. Presumably this is better ...
New
brainlid
Episode 128 of Thinking Elixir. The Phoenix 1.7 announcement blog post mentioned the ability to swap out Cowboy for another webserver lik...
New

Other popular topics Top

sen
Hi All, I set a environment variables in dev.exs , like below code. when i start server, how can i set the ${enable} value? thanks. d...
New
malloryerik
Hi, this is for people who, like me, have had some friction using .html.heex templates in VSCode. The solution seems to be, in a hyphena...
New
msaraiva
Surface is an experimental library built on top of Phoenix LiveView and its new LiveComponent API that aims to provide a more declarative...
564 43622 214
New
JakeBecker
TL;DR: I’ve just released an implementation of Microsoft’s IDE-independent Language Server Protocol for Elixir. It adds language support ...
1144 53690 245
New
gausby
I asked this very same question on twitter and got some interesting feedback, but I thought it would be a good question to ask here as we...
1207 39297 209
New
ashish173
I am using Ecto timestamps with postgres, I can see the timestamps() use the :naive_dateime but for my use case I wanted to store the ti...
New
shijith.k
I am trying to start a new phoenix project with elixir 1.9, but mix phx.new does not work. It says that ** (Mix) The task "phx.new" could...
New
joaquinalcerro
Hi there, I am working with Ecto-Postgresql and I need to call all of the records from a specific table but the table has 40,000 records...
New
marick
I had some trouble figuring out how to make many-to-many associations work. Once I got it working, I wrote a blog post. Because I’m a nov...
New
Qqwy
Update: How to use the Blogs & Podcasts section You can post links to your blog posts or podcasts either in one of the Official Blog...
3271 126479 1222
New

We're in Beta

About us Mission Statement