The Writing on the Wall: Security Risks in Low-Code/No-Code App Development

Thursday, March 21 | 1 PM EDT, 10 AM PT

Join subject expert Amichai Shulman for an exploration of security risks in low-code/no-code development environments and in the marketplaces of low-code application platforms. 

Dissecting several supply chain attacks, Amichai will demonstrate low-code/no-code development as the new frontier for security professionals. 

Get practical mitigation guidelines for the attacks and mistakes detailed.

Who will benefit from this 45-minute webinar:

  • CISOs and Security Architects
  • Platform Owners and CoE Leaders
  • Citizen Developers
  • Security Practitioners and Researchers

Registration for this webinar Is CLOSED.

Please revisit our website next week for seeing the session as a webinar on demand or sign up our newsletter and we will inform you as soon as the recording is available. 

Webinar Date

Thursday, March 21, 2024


Duration: 45 minutes


Can’t make it? Don’t worry!

Register anyway, and you will receive a recording of the webinar to watch at your convenience.


The writing on the wall is that risks are imminent, and attackers hold an unfair advantage

As the adoption of Low-Code Application Platforms gains momentum, code reuse and sharing mechanisms via marketplaces emerge as a dominant pattern.

Based on findings by Nokod’s cyber research team, this webinar will reveal how low-code/no-code application development is susceptible to supply chain attacks.

Whether it’s Forge for OutSystems, AppSource for Microsoft Power Platform, or the UiPath Marketplace, these platforms empower professional developers, citizen developers, and business engineers by tapping into content created and openly shared by their peers.

But here lies the risk: While this accelerates innovation and development, it also opens a potential gateway for attackers.

Our research covers various aspects of supply chain security threats, including:

  • The level of security reviews in the different marketplaces
  • The potential effects of malicious “no code” components
  • Additional vulnerabilities that increase the ability of attackers to introduce malicious code through third-party components.

Our webinar aims to raise awareness of the security risks in low-code/no-code apps and robotic process automation, especially as security professionals struggle to build security into the LCNC app development life cycle.

Adding insult to injury, the current security stack is not fit to protect businesses from these threats. Given the current status of tools (or lack thereof) to govern the use of third-party components in the various LCAPs, we find this risk particularly acute in these environments.

Learnings and Takeaways

Webinar speaker

Amichai Shulman

Co-Founder & CTO

Nokod Security

Amichai Shulman, Nokod Security’s CTO and co-founder, is a cyber security researcher, entrepreneur, and investor with 30+ years of cybersecurity expertise across military, government, and commercial sectors.

Co-founding Imperva in 2002, he served as CTO at Imperva for over 15 years and drove innovation and thought leadership. Over the last two decades, Amichai has impacted the advancement of cybersecurity through groundbreaking research, making him a sought-after speaker at conferences such as RSAC, Infosec, BlackHat, and OWASP Appsec. His findings and commentary are frequently featured in industry publications, including The Register and Dark Reading, and reached the general press, such as the New York Times

As a seed investor and advisor, he played a pivotal role in guiding successful startups like Intsights, SkyFence, Lacoon, and Indegy.

Additionally, Amichai teaches cybersecurity and conducts independent research at the Technion Institute of Technology. Amichai holds a B.Sc. and M.Sc. in Computer Science.

Your Host

Ursula Ron, Director of Marketing at Nokod Security

Dr. Ursula Ron

Director of Marketing

Nokod Security

Scroll to Top