Join hosts Joel Moses, Oscar Spencer, and Matt Yacobucci as they dive deep into the world of formal verification with special guest Chris Fallin. In this episode of WebAssembly Unleashed, the team discusses the importance of formal verification in software development, particularly for WebAssembly. Chris, a co-author of the Cranelift compiler and Mozilla alum, explains the concept of formal verification, its significance, and how it can be applied to ensure software correctness and security. The conversation covers a range of topics including type safety, the use of SMT solvers, the challenges in formally verifying compilers, and the potential role of AI in generating formally verified code. Don't miss this insightful discussion if you're keen to learn about cutting-edge techniques to make software more reliable and secure.
00:00 Welcome to WebAssembly Unleashed
00:57 Community Updates
01:41 Guest Introduction: Chris Fallin
02:18 What is formal verification and why is it important?
03:10 Formal Verification in WebAssembly
06:28 Challenges and Real-World Applications
07:52 Tools and Techniques for Verification
20:22 Future Directions and Broader Implications
28:21 AI and Formal Verification
30:44 Lack of Formal Verification Consequences
Did you miss the WebAssembly Unleashed episode 16 with Bruce Gain? Check it out here: https://youtu.be/Gjd8l1Sz9qY?si=QGixwObXJgvex9DS
For more from F5's Office of the CTO visit the following sites:
Blogs - https://www.f5.com/company/octo
Reports - https://www.f5.com/services/resources/reports
Meet Your Hosts:
Joel Moses | https://www.linkedin.com/in/joelmoses/ | https://community.f5.com/users/joel_moses/398372
Oscar Spencer | https://twitter.com/oscar_spen | https://www.linkedin.com/in/oscarspen/
Matthew Yacobucci | https://www.linkedin.com/in/matthew-yacobucci-323b4b2/
All content for DevCentral is the property of F5 DevCentral Community and is served directly from their servers
with no modification, redirects, or rehosting. The podcast is not affiliated with or endorsed by Podjoint in any way.
Join hosts Joel Moses, Oscar Spencer, and Matt Yacobucci as they dive deep into the world of formal verification with special guest Chris Fallin. In this episode of WebAssembly Unleashed, the team discusses the importance of formal verification in software development, particularly for WebAssembly. Chris, a co-author of the Cranelift compiler and Mozilla alum, explains the concept of formal verification, its significance, and how it can be applied to ensure software correctness and security. The conversation covers a range of topics including type safety, the use of SMT solvers, the challenges in formally verifying compilers, and the potential role of AI in generating formally verified code. Don't miss this insightful discussion if you're keen to learn about cutting-edge techniques to make software more reliable and secure.
00:00 Welcome to WebAssembly Unleashed
00:57 Community Updates
01:41 Guest Introduction: Chris Fallin
02:18 What is formal verification and why is it important?
03:10 Formal Verification in WebAssembly
06:28 Challenges and Real-World Applications
07:52 Tools and Techniques for Verification
20:22 Future Directions and Broader Implications
28:21 AI and Formal Verification
30:44 Lack of Formal Verification Consequences
Did you miss the WebAssembly Unleashed episode 16 with Bruce Gain? Check it out here: https://youtu.be/Gjd8l1Sz9qY?si=QGixwObXJgvex9DS
For more from F5's Office of the CTO visit the following sites:
Blogs - https://www.f5.com/company/octo
Reports - https://www.f5.com/services/resources/reports
Meet Your Hosts:
Joel Moses | https://www.linkedin.com/in/joelmoses/ | https://community.f5.com/users/joel_moses/398372
Oscar Spencer | https://twitter.com/oscar_spen | https://www.linkedin.com/in/oscarspen/
Matthew Yacobucci | https://www.linkedin.com/in/matthew-yacobucci-323b4b2/
Tackling CVE Chaos, Parquet Tool Insights, and EU Cyber Resilience Act Unpacked
DevCentral
30 minutes 46 seconds
6 months ago
Tackling CVE Chaos, Parquet Tool Insights, and EU Cyber Resilience Act Unpacked
🔒 Welcome to this week’s episode of AppSecNow, the DevCentral podcast dedicated to all things application security! 🚨 This week, we unpack critical updates including:
💥 A zero-day SAP CVE with a CVSS score of 10—what it means, how it's being exploited, and what you can do to defend against it.
🛠️ A groundbreaking Parquet tool from F5 Labs that simplifies vulnerability testing for critical supply chain security issues.
Link: https://github.com/F5-Labs/parquet-canary-exploit-rce-poc-CVE-2025-30065
🌍 The EU Cyber Resilience Act—what it means for manufacturers, open-source stewards, and secure-by-design initiatives.
Learn how AppSec professionals leverage cutting-edge tools and protocols to tackle some of the biggest challenges in software security today. Whether you're prepping for RSA or managing zero trust architectures, this episode is packed with actionable insights!
✅ Like, subscribe, and follow to keep up with the latest in application security.
00:00 Introduction
02:20 Parquet Tool
06:30 VulnCon 2025
09:09 EU Cyber Resilience Act
16:45 CVE Program Chaos
20:29 Pay Your Tolls!
27:17 SAP Critical Vulnerability
29:18 Outro
DevCentral
Join hosts Joel Moses, Oscar Spencer, and Matt Yacobucci as they dive deep into the world of formal verification with special guest Chris Fallin. In this episode of WebAssembly Unleashed, the team discusses the importance of formal verification in software development, particularly for WebAssembly. Chris, a co-author of the Cranelift compiler and Mozilla alum, explains the concept of formal verification, its significance, and how it can be applied to ensure software correctness and security. The conversation covers a range of topics including type safety, the use of SMT solvers, the challenges in formally verifying compilers, and the potential role of AI in generating formally verified code. Don't miss this insightful discussion if you're keen to learn about cutting-edge techniques to make software more reliable and secure.
00:00 Welcome to WebAssembly Unleashed
00:57 Community Updates
01:41 Guest Introduction: Chris Fallin
02:18 What is formal verification and why is it important?
03:10 Formal Verification in WebAssembly
06:28 Challenges and Real-World Applications
07:52 Tools and Techniques for Verification
20:22 Future Directions and Broader Implications
28:21 AI and Formal Verification
30:44 Lack of Formal Verification Consequences
Did you miss the WebAssembly Unleashed episode 16 with Bruce Gain? Check it out here: https://youtu.be/Gjd8l1Sz9qY?si=QGixwObXJgvex9DS
For more from F5's Office of the CTO visit the following sites:
Blogs - https://www.f5.com/company/octo
Reports - https://www.f5.com/services/resources/reports
Meet Your Hosts:
Joel Moses | https://www.linkedin.com/in/joelmoses/ | https://community.f5.com/users/joel_moses/398372
Oscar Spencer | https://twitter.com/oscar_spen | https://www.linkedin.com/in/oscarspen/
Matthew Yacobucci | https://www.linkedin.com/in/matthew-yacobucci-323b4b2/
