A few weeks ago, I had the chance to do a Meteor Club Q&A with Josh Owens. We spent an hour or so talking about various topics revolving around Meteor and Meteor security and answering questions submitted by the community. The whole process was a lot of fun. You should check out the whole Q&A on Youtube, or take a look below:
During the Q&A, we covered a variety of topics ranging from data-in-motion/data-at-rest security, to the positives and negatives of collection validators, all the way through to best practices for securing multi-tenant Meteor applications.
Scanning Meteor Projects for Node Vulnerabilities – Meteor applications can make use of Node.js packages, which opens them up to a world of vulnerabilities. Protect yourself by learning how to scan those packages for known vulnerabilities.
Unit Testing With Meteor 1.3 – Meteor's official testing solution, Velocity, is just too slow. Check out how to use ES6 modules and Mocha to write lightning fast unit tests!