Robin and Mazen unpack the rise of AI-powered security threats, from the TanStack breach to compromised React Native packages and GitHub supply chain attacks. Learn practical ways to secure your React Native apps, manage dependencies safely, and reduce risk in modern mobile development.
Show Notes
- Snyk: TanStack Compromised
- Wiz: Mini Shai-Hulud Strikes Again
- TanStack: Hardening Followup
- TanStack: Full Postmortem
- StepSecurity: Malicious RN Packages
- Metro4Shell CVE-2025-11953
- JFrog: CVE-2025-11953 Deep Dive
- ReactCon Talk: Aleksandra Desmurs-Linczewska
- Matteo Collina: Why Trusted Publishing Can't Save Us
- npm Security Best Practices
- React Native Security Docs
- pull_request vs pull_request_target explained
Connect With Us!
- Robin Heinze: @robinheinze
- Mazen Chami: @mazenchami
- React Native Radio: @ReactNativeRdio
This episode is brought to you by Infinite Red!
Infinite Red is a premier mobile app consultancy, especially focused on Expo and React Native, located fully remote in the US. We’re a team of 30 with highly experienced mobile app developers and have been doing this for over a decade. We are also one of the first development teams to adopt agentic coding in a way that keeps high quality standards and aren’t afraid to do things the old school way if we need to. If you’re looking for mobile app or React Native or Expo expertise for your next project, hit us up at infinite.red/radio.
Fler avsnitt av React Native Radio
Visa alla avsnitt av React Native RadioReact Native Radio med Jamon Holmgren, Robin Heinze, Mazen Chami finns tillgänglig på flera plattformar. Informationen på denna sida kommer från offentliga podd-flöden.
