Conference
Festival
Tickets
Agenda
Speakers
Workshops

Total ReDoS: the dangers of regex in JavaScript

Room 4
16:20 - 17:20
(UTC+02

Talk (60 min)

Wednesday 
Regular expressions are complicated and can be hard to learn. On top of that, they can also be a security risk; writing the wrong pattern can open your application up to denial of service attacks. One token out of place and you invite in the dreaded ReDoS.
JavaScript
Security

In this talk we’ll track down the patterns that can cause this trouble, explain why they are an issue and propose ways to fix them now and avoid them in the future. Together we’ll demystify these powerful search patterns and keep your application safe from expressions that are anything but regular.

Phil Nash

Phil is a developer advocate for Sonar and Google Developer Expert. He's been in the web industry for 10 years building with JavaScript and Ruby. He can be found hanging out at meetups and conferences, playing with new technologies and APIs or writing open source code online. Sometimes he makes his own beer, but he's more likely to be found discovering new ones around the world.

Phil tweets at @philnash and you can find him elsewhere online at https://philna.sh.

This website uses cookies to see how you use our website. How do you feel about that?

All good!
Don't want it