OWASP Top 10 & Open Source Code: Why Watching Your Back Means Watching Everyone Else’s

At times, being a developer can feel a little bit like being back in school and getting partnered up on projects. You would work your butt off, fastidiously checking and rechecking your part of the assignment until you’re sure it’s perfect only to show up at school on Monday and find that your partner hasn’t fulfilled his end of the deal. And there goes the project. The open source components you can tap into as a developer are, for the most part, wonderful things. But while you’ve doubtlessly spent endless hours checking the security of your own code, you’re often put in a position where you have to trust that all of that third party code was checked as closely as yours was. Sometimes, those open source components that saved you all kinds of time and trouble may have glaring security issues. The good news is, there is a solution. Continue reading this article on IT Briefcase  
Skip to content