July 2018
Intermediate to advanced
356 pages
9h 18m
English
Content preview from Hands-On Security in DevOps
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Establishing secure coding baselines
Secure coding baselines are the minimum secure coding requirements and a checklist for the project team to move to the next stage. Secure coding baselines are also part of the release criteria. It's always suggested you use secure coding guidelines based on industry best practices or standards, such as CERT Secure Coding, as described in the preceding table.
Define secure coding baselines based on each programming language, such as PHP, Python, JavaScript, Android, and iOS. The secure coding baseline is better to include the information not only secure coding rules but also examples of security risks, vulnerable code examples, and suggested ones. Here is an example.
Secure code issue – predictable random ...