Tanya Janca | SheHacksPurple
Secure Code Trainer - Best-selling author of Alice and Bob Learn Secure Coding & Alice and Bob Learn Application Security. #AppSec she/her
https://shehackspurple.ca 🌻
- It's called maturity!
- Canada is one step closer to mandatory secure coding in government software. Petition e-7115 is live! If you can sign, please do it today: 👉 twp.ai/9PZlS4 This is how we make real change. 🙏
- The Psychology of Bad Code: Why 'do the right thing' doesn't work... twp.ai/Imu43B More here: twp.ai/9PZZf3
- I updated my training page and made a real brochure instead of “here’s a slide deck and blah” 😅 If you’re looking for secure-coding training that respects developers and actually sticks: 👉 twp.ai/NTYjRM Brochure: twp.ai/9PYzrA
- I need to give an official name to something we are all talking about right now: Security drift. Security drift is when software continues to work, but slowly becomes less secure over time, without anyone intentionally making it that way. 1/2
- Continuing my series on The Psychology of Bad Code, this is an introductory video about the entire concept: twp.ai/NTZMbW For the blog series, which you can read here: twp.ai/9PZd1K
- I’ve been working toward this for years, and it finally happened. Canada now has a parliamentary petition to require secure coding in federal software. If you care about cybersecurity, public safety, and better government tech, please sign: 👉 twp.ai/9Paf34 1/2
- My second blog post in the series 'The Psychology of Bad Code' is now out, with videos and more about Building Systems That Support Secure Developer Behavior! twp.ai/9PZOHJ
- Reposted by Tanya Janca | SheHacksPurple[Not loaded yet]
- Reposted by Tanya Janca | SheHacksPurple[Not loaded yet]
- It’s #CyberMentoringMonday!!!! Are you looking for a professional mentor or to learn more about InfoSec? Are you experienced and willing to ‘give back’? Use this thread and hashtag to connect!
- For those of you who have trouble accepting or asking for help: I recently needed help, asked for it, and received. I literally had no idea the level of kindness and generosity that was available to me. I have been (recently) overwhelmed by the amazing kindness that other people are willing to give.
- How To Get Your First Job In #Cybersecurity: a blog post of all the steps you need to transition into #InfoSec! twp.ai/9PZTxa
- FOLKS! The audiobook of Alice and Bob Learn Secure Coding is OUT on @audible now! If you buy it and like it, please rate it for me? I'm so pleased it's finally available. twp.ai/9PZIi1
- I'm giving training in Denver on February at Wild West Hackin' Fest - Mile High! Check out my 2-day event, Secure Coding and API Hardening: Secure Design, Development, and Threat Modeling, here: twp.ai/9PaUgw
- OHHHHHHHHHH
- I was on the Cyber Security Today podcast, hosted by Jim Love. Check it out! twp.ai/9PaUVC
- I spoke about 'Using Artificial Intelligence, Safely' at ExtremeJ, below video. ✅ Risks when using AI in software development ✅ How to prevent unsafe AI-driven decisions ✅ Best practices for applying AI to security and development tasks twp.ai/9Paarp
- Canada is one step closer to mandatory secure coding in government software. Petition e-7115 is live! If you can sign, please do it today: 👉 twp.ai/9Paevn This is how we make real change. 🙏
- Recent MCP Server Vulnerabilities and What To Do About Them: twp.ai/9PaLPx
- Reposted by Tanya Janca | SheHacksPurple[Not loaded yet]
- I’ve been working toward this for years, and it finally happened. Canada now has a parliamentary petition to require secure coding in federal software. If you care about cybersecurity, public safety, and better government tech, please sign: 👉 twp.ai/9Paevl 1/2
- Big news in #AppSec: the #OWASP Top 10 2025 is now available! I'm part of the project team and ALL OF US want every dev, security engineer, and leader to read it (please). twp.ai/E6ERYy 1/5
- Reposted by Tanya Janca | SheHacksPurple[Not loaded yet]
- Software Supply Chain: Bigger (and Scarier) Than We Realize - a blog post by meeeeeee! When we talk about the software supply chain security, most people think only of dependencies (open-source libraries and frameworks). twp.ai/9PXsGr #appsec #supplychain 1/2
- It’s #CyberMentoringMonday!!!! Are you looking for a professional mentor or to learn more about InfoSec? Are you experienced and willing to ‘give back’? Use this thread and hashtag to connect!
- I was on Unicorn Dispatch LIVE with Bryson Bort! Listen to us have fun, be ridiculous, but also solve some security problems! twp.ai/9PaQC9
- I was on the Cyber Security Today podcast, hosted by Jim Love. Check it out! twp.ai/9PaRdg
- I'm giving training in Denver on February at Wild West Hackin' Fest - Mile High! Check out my 2-day event, Secure Coding and API Hardening: Secure Design, Development, and Threat Modeling, here: twp.ai/9PaSAn
- I will be on a webinar for 'Behind the Book' webinar, Jan 27th at 2pm Eastern, 11:00 am Pacific. Join us to hear all about Alice and Bob Learn Secure Coding! Register for free: twp.ai/9PaPZe
- Secure coding in #JavaScript, my latest blog on @stackoverflow.blog.web.brid.gy. JavaScript is the front-end of the entire internet. Because JavaScript is so prolific, it’s a prime target for attackers. twp.ai/9PXg7h
- Exactly!
