A post providing a checklist for secure code review, including static code analysis, test coverage, input validation, dangerous methods, strong parameters, authentication and authorization, data handling, dependencies, business logic, configuration changes, error handling, file uploads, and third-party services.
Table of contents
Hire me for a penetration testOr follow me on TwitterI run an indie startup providing vulnerability scanning for your Ruby on Rails app.Sort: