Official websites use .gov
A .gov website belongs to an official government organization in the United States.
Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.
Mitigating TypeScript Application Vulnerabilities
TypeScript is an object-oriented and strongly typed language that enhances JavaScript's capabilities. It enables software development teams to specify the types of data and generates error reports whenever the types don't match. This course will provide an overview of TypeScript's best practices.
The course is designed for the NICE Workforce Specialty Areas of Software Development (DEV), Vulnerability Assessment and Management (VAM), Systems Requirements Planning (SRP), and Systems Development (SYS). The course objectives are aligned with Amazon's TypeScript best practice guidelines and the NIST Cybersecurity Framework.
Course Overview
Learning Objectives
After successfully completing this course, you will be equipped with the knowledge and skills required to:
- Apply best practices for describing data, using "enum" constructs, and avoiding "any"
- Scope conservatively to avoid name collisions and loss of data integrity
- Use and extend interfaces while avoiding empty interfaces
- Use design patterns such as abstract factories and factory methods
- Use access modifiers to encapsulate and protect data in objects
- Define and use standard naming conventions
- Use ESLint or other TypeScript-aware static analysis tools
Framework Connections
The materials within this course focus on the NICE Framework Task, Knowledge, and Skill statements identified within the indicated NICE Framework component(s):
Competency Areas
Feedback
If you would like to provide feedback on this course, please e-mail the NICCS team at NICCS@mail.cisa.dhs.gov. Please keep in mind that NICCS does not own this course or accept payment for course entry. If you have questions related to the details of this course, such as cost, prerequisites, how to register, etc., please contact the course training provider directly. You can find course training provider contact information by following the link that says “Visit course page for more information...” on this page.