Node.js is getting more and more mature, no doubt - despite this, not a lot of security guidelines are out there.
In this post I will share some points you should keep in mind when it comes to Node.js security.
Contents:
* No eval, or friends
* Strict mode, please
* Static code analysis
* Testing
* Say no to sudo node app.js
* Avoid command injection
* Temp files
* Securing your web application
* Tools to use
* Stay updated