npm-pakettiekosysteemin haavoittuvuudet

npm-pakettiekosysteemin haavoittuvuudet

Tässä tutkielmassa käsitellään npm-paketinhallintajärjestelmälle tyypillisiä haavoittuvuuksia, uhkia ja muita pakettiekosysteemeille tyypillisiä ongelmia. Lisäksi tutkielma pyrkii tarjoamaan erilaisia kehitettyjä ratkaisuja ongelmien ehkäisemiseksi. Tutkimusmenetelmänä on kirjallisuuskatsaus aiheita...

Full description

Bibliographic Details
Main Author: Pigg, Henri
Other Authors: Informaatioteknologian tiedekunta, Faculty of Information Technology, Informaatioteknologia, Information Technology, Jyväskylän yliopisto, University of Jyväskylä
Format: Bachelor's thesis
Language:fin
Published: 2023
Subjects:
Tietotekniikka
Mathematical Information Technology
602
ohjelmistokehitys
haavoittuvuus
tietotekniikka
Online Access: https://jyx.jyu.fi/handle/123456789/86808
_version_ 1826225796681826305
author Pigg, Henri
author2 Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä
author_facet Pigg, Henri Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä Pigg, Henri Informaatioteknologian tiedekunta Faculty of Information Technology Informaatioteknologia Information Technology Jyväskylän yliopisto University of Jyväskylä
author_sort Pigg, Henri
datasource_str_mv jyx
description Tässä tutkielmassa käsitellään npm-paketinhallintajärjestelmälle tyypillisiä haavoittuvuuksia, uhkia ja muita pakettiekosysteemeille tyypillisiä ongelmia. Lisäksi tutkielma pyrkii tarjoamaan erilaisia kehitettyjä ratkaisuja ongelmien ehkäisemiseksi. Tutkimusmenetelmänä on kirjallisuuskatsaus aiheita käsitteleviin tutkimuksiin ja artikkeleihin. Tutkimustulokset selventävät parhaita käytänteitä, joita tulisi hyödyntää ongelmien välttämiseksi. This thesis is about vulnerabilities, threats and other common problems in the npm- package ecosystem. Additionally the thesis aims to offer some solutions to possibly prevent these problems handled in the text. The study method for the thesis is a literary review. The results offer some best practices that should be utilized to avoid the problems presented in the thesis.
first_indexed 2023-05-09T20:01:28Z
format Kandityö
free_online_boolean 1
fullrecord [{"key": "dc.contributor.author", "value": "Pigg, Henri", "language": "", "element": "contributor", "qualifier": "author", "schema": "dc"}, {"key": "dc.date.accessioned", "value": "2023-05-09T07:30:59Z", "language": null, "element": "date", "qualifier": "accessioned", "schema": "dc"}, {"key": "dc.date.available", "value": "2023-05-09T07:30:59Z", "language": null, "element": "date", "qualifier": "available", "schema": "dc"}, {"key": "dc.date.issued", "value": "2023", "language": "", "element": "date", "qualifier": "issued", "schema": "dc"}, {"key": "dc.identifier.uri", "value": "https://jyx.jyu.fi/handle/123456789/86808", "language": null, "element": "identifier", "qualifier": "uri", "schema": "dc"}, {"key": "dc.description.abstract", "value": "T\u00e4ss\u00e4 tutkielmassa k\u00e4sitell\u00e4\u00e4n npm-paketinhallintaj\u00e4rjestelm\u00e4lle tyypillisi\u00e4 haavoittuvuuksia, uhkia ja muita pakettiekosysteemeille tyypillisi\u00e4 ongelmia. Lis\u00e4ksi tutkielma\npyrkii tarjoamaan erilaisia kehitettyj\u00e4 ratkaisuja ongelmien ehk\u00e4isemiseksi.\nTutkimusmenetelm\u00e4n\u00e4 on kirjallisuuskatsaus aiheita k\u00e4sitteleviin tutkimuksiin ja artikkeleihin. Tutkimustulokset selvent\u00e4v\u00e4t parhaita k\u00e4yt\u00e4nteit\u00e4, joita tulisi hy\u00f6dynt\u00e4\u00e4 ongelmien v\u00e4ltt\u00e4miseksi.", "language": "fi", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.abstract", "value": "This thesis is about vulnerabilities, threats and other common problems in the\nnpm- package ecosystem. Additionally the thesis aims to offer some solutions to possibly\nprevent these problems handled in the text.\nThe study method for the thesis is a literary review. The results offer some best practices that\nshould be utilized to avoid the problems presented in the thesis.", "language": "en", "element": "description", "qualifier": "abstract", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Submitted by Paivi Vuorio (paelvuor@jyu.fi) on 2023-05-09T07:30:59Z\nNo. of bitstreams: 0", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.description.provenance", "value": "Made available in DSpace on 2023-05-09T07:30:59Z (GMT). No. of bitstreams: 0\n Previous issue date: 2023", "language": "en", "element": "description", "qualifier": "provenance", "schema": "dc"}, {"key": "dc.format.extent", "value": "19", "language": "", "element": "format", "qualifier": "extent", "schema": "dc"}, {"key": "dc.language.iso", "value": "fin", "language": null, "element": "language", "qualifier": "iso", "schema": "dc"}, {"key": "dc.rights", "value": "In Copyright", "language": "en", "element": "rights", "qualifier": null, "schema": "dc"}, {"key": "dc.title", "value": "npm-pakettiekosysteemin haavoittuvuudet", "language": "", "element": "title", "qualifier": null, "schema": "dc"}, {"key": "dc.type", "value": "bachelor thesis", "language": null, "element": "type", "qualifier": null, "schema": "dc"}, {"key": "dc.identifier.urn", "value": "URN:NBN:fi:jyu-202305092891", "language": "", "element": "identifier", "qualifier": "urn", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Bachelor's thesis", "language": "en", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.type.ontasot", "value": "Kandidaatinty\u00f6", "language": "fi", "element": "type", "qualifier": "ontasot", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Informaatioteknologian tiedekunta", "language": "fi", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.faculty", "value": "Faculty of Information Technology", "language": "en", "element": "contributor", "qualifier": "faculty", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Informaatioteknologia", "language": "fi", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.department", "value": "Information Technology", "language": "en", "element": "contributor", "qualifier": "department", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "Jyv\u00e4skyl\u00e4n yliopisto", "language": "fi", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.contributor.organization", "value": "University of Jyv\u00e4skyl\u00e4", "language": "en", "element": "contributor", "qualifier": "organization", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Tietotekniikka", "language": "fi", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "dc.subject.discipline", "value": "Mathematical Information Technology", "language": "en", "element": "subject", "qualifier": "discipline", "schema": "dc"}, {"key": "yvv.contractresearch.funding", "value": "0", "language": "", "element": "contractresearch", "qualifier": "funding", "schema": "yvv"}, {"key": "dc.type.coar", "value": "http://purl.org/coar/resource_type/c_7a1f", "language": null, "element": "type", "qualifier": "coar", "schema": "dc"}, {"key": "dc.rights.accesslevel", "value": "openAccess", "language": null, "element": "rights", "qualifier": "accesslevel", "schema": "dc"}, {"key": "dc.type.publication", "value": "bachelorThesis", "language": null, "element": "type", "qualifier": "publication", "schema": "dc"}, {"key": "dc.subject.oppiainekoodi", "value": "602", "language": "", "element": "subject", "qualifier": "oppiainekoodi", "schema": "dc"}, {"key": "dc.subject.yso", "value": "ohjelmistokehitys", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "haavoittuvuus", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.subject.yso", "value": "tietotekniikka", "language": null, "element": "subject", "qualifier": "yso", "schema": "dc"}, {"key": "dc.rights.url", "value": "https://rightsstatements.org/page/InC/1.0/", "language": null, "element": "rights", "qualifier": "url", "schema": "dc"}]
id jyx.123456789_86808
language fin
last_indexed 2025-02-18T10:54:41Z
main_date 2023-01-01T00:00:00Z
main_date_str 2023
online_boolean 1
online_urls_str_mv {"url":"https:\/\/jyx.jyu.fi\/bitstreams\/8b234754-605b-4e46-b854-843bb5485786\/download","text":"URN:NBN:fi:jyu-202305092891.pdf","source":"jyx","mediaType":"application\/pdf"}
publishDate 2023
record_format qdc
source_str_mv jyx
spellingShingle Pigg, Henri npm-pakettiekosysteemin haavoittuvuudet Tietotekniikka Mathematical Information Technology 602 ohjelmistokehitys haavoittuvuus tietotekniikka
title npm-pakettiekosysteemin haavoittuvuudet
title_full npm-pakettiekosysteemin haavoittuvuudet
title_fullStr npm-pakettiekosysteemin haavoittuvuudet npm-pakettiekosysteemin haavoittuvuudet
title_full_unstemmed npm-pakettiekosysteemin haavoittuvuudet npm-pakettiekosysteemin haavoittuvuudet
title_short npm-pakettiekosysteemin haavoittuvuudet
title_sort npm pakettiekosysteemin haavoittuvuudet
title_txtP npm-pakettiekosysteemin haavoittuvuudet
topic Tietotekniikka Mathematical Information Technology 602 ohjelmistokehitys haavoittuvuus tietotekniikka
topic_facet 602 Mathematical Information Technology Tietotekniikka haavoittuvuus ohjelmistokehitys tietotekniikka
url https://jyx.jyu.fi/handle/123456789/86808 http://www.urn.fi/URN:NBN:fi:jyu-202305092891
work_keys_str_mv AT pigghenri npmpakettiekosysteeminhaavoittuvuudet

Similar Items