Guide to Securing Elixir Apps on Gigalixir with Paraxial.io

Michael Lubas discusses the challenges of securing Elixir applications on Gigalixir, a popular Platform as a Service (PaaS) for Elixir apps. Traditional security solutions fall short due to their complexity and requirements, which are not suited for Elixir environments. The article introduces Paraxial.io, a security tool tailored for Elixir applications, and demonstrates how to deploy a vulnerable open-source project, Potion Shop, on Gigalixir while mitigating security risks using Paraxial.io. It covers the setup from cloning the repository, resolving vulnerabilities such as SQL Injection, XSS, and CSRF, configuring environment variables, running scans, and deploying to Gigalixir. Additional security steps include IP rate limiting, bot protection, and continuous monitoring using Paraxial.io features. The article concludes with recommendations for using Paraxial.io in production environments to ensure robust security.