JNI Signal Chaining and OWASP (Security)
Christian Heinrich
christian.heinrich at cmlh.id.au
Tue Apr 16 00:43:36 UTC 2019
Hank,
On Fri, 12 Apr 2019 at 09:41, Hank Edwards <hedwards at crawfordtech.com> wrote:
>We've recently discovered that the use of C is considered a code injection risk by security analysis tools, such as ones that check for OWASP 2017.
I contribute to https://github.com/OWASP/Top10/pull/450
Can you please disclose the specific candidate[s] your security
analysis tool has cited within the OWASP Top Ten 2017 release?
--
Regards,
Christian Heinrich
http://cmlh.id.au/contact
More information about the security-dev
mailing list