Trust No Input: Taint Analysis at Compile Time - Matteo Di Pirro - NDC Manchester 2025

Taint analysis tracks data flows from untrusted sources to security-sensitive contexts to prevent vulnerabilities. This talk demonstrates using Scala's type system to encode security properties at compile time, creating labeled boxes (tainted, pure, sanitized) that wrap values and enforce sanitization rules. The compiler blocks Show more