What would be your #1 goal for the training, and how would you be able to measure success? It's great to have knowledge of all OWASP top 10, but it's unlikely to be internalized through single training sessions. Maybe a…
In general work, try applying a threat modeling framework to guide your security measures. I like STRIDE: https://en.m.wikipedia.org/wiki/STRIDE_(security) Other than that, there a lot of best practices for each…
For Rails and general backend development, I liked reading through the backend code for Gitlab CE (https://gitlab.com/gitlab-org/gitlab-ce). Their code style follows Rails best practices pretty extensively. For smaller…
Looks like a great methodology and good results. Looking forward to reading the paper because I've been working around the GitHub API restrictions for the same purpose. Specifically, I'm building a SaaS…
What would be your #1 goal for the training, and how would you be able to measure success? It's great to have knowledge of all OWASP top 10, but it's unlikely to be internalized through single training sessions. Maybe a…
In general work, try applying a threat modeling framework to guide your security measures. I like STRIDE: https://en.m.wikipedia.org/wiki/STRIDE_(security) Other than that, there a lot of best practices for each…
For Rails and general backend development, I liked reading through the backend code for Gitlab CE (https://gitlab.com/gitlab-org/gitlab-ce). Their code style follows Rails best practices pretty extensively. For smaller…
Looks like a great methodology and good results. Looking forward to reading the paper because I've been working around the GitHub API restrictions for the same purpose. Specifically, I'm building a SaaS…