Do security vulnerabilities exist in modern front-end frameworks like Vue, React or Angular? We'll take a look at attack vectors on the front-end and realize that XSS is still very much a real concern when building modern front-end applications. We'll talk about workflows and tools to help bring front-end security to front-end developers and the risks of open source and JavaScript's supply chain security from dependencies to the edge.