Logbot (Mar 20 2025 at 14:00): Logbot (Mar 20 2025 at 14:00):Ilya Grigorik and his team at Shopify has been hard at work securing ecommerce checkouts from sophisticated news attacks (such as digital skimming) and he's here to share all the technical intricacies and far-reaching implications of this work. :link: https://changelog.fm/633
| Ch | Start | Title | Runs |
|---|---|---|---|
| 01 | 00:00 | Welcome to The Changelog | 01:03 |
| 02 | 01:03 | Sponsor: Retool | 03:01 |
| 03 | 04:04 | Welcoming Ilya back | 01:39 |
| 04 | 05:43 | Ilya's career path | 04:36 |
| 05 | 10:19 | Core Web Vitals | 03:18 |
| 06 | 13:36 | Unpacking PCI | 03:39 |
| 07 | 17:15 | PCI shortcomings | 01:20 |
| 08 | 18:35 | PCI v4 | 01:53 |
| 09 | 20:28 | 1st-party scripts | 00:50 |
| 10 | 21:18 | 3rd-party scripts | 02:14 |
| 11 | 23:32 | Sounds not possible | 00:58 |
| 12 | 24:30 | Sponsor: Augment Code | 03:09 |
| 13 | 27:39 | Shopify's approach | 04:44 |
| 14 | 32:22 | Compromises | 04:10 |
| 15 | 36:32 | A long journey | 01:37 |
| 16 | 38:10 | Is compliance enough? | 03:58 |
| 17 | 42:08 | Improving the web platform | 04:29 |
| 18 | 46:37 | CSP / SRI reporting details | 04:51 |
| 19 | 51:28 | Shopify's SRI setup | 02:32 |
| 20 | 54:01 | Key takeaways | 03:03 |
| 21 | 57:04 | AI shopping agents | 01:49 |
| 22 | 58:53 | Human out of the loop? | 02:07 |
| 23 | 1:01:00 | Wrapping up | 02:05 |
| 24 | 1:03:05 | Closing thoughts | 02:02 |
Lars Ellingsen (Mar 28 2025 at 00:03):Ilya is a fantastic guest; he's very well spoken!
Last updated: Apr 04 2025 at 01:15 UTC