GitXplorerGitXplorer
T

secguide

public
13247 stars
1940 forks
39 issues

Commits

List of commits on branch main.
Verified
bfda087142e3bb3f5840cbc6af82c1982d1d14e4

Merge pull request #67 from T4erg/main

TT4erg committed 3 years ago
Unverified
9eec010968a478b5b163f6a09148f3f7d2936e45

style: beauty table of contents.

TT4erg committed 3 years ago
Unverified
3d136eb0fcdd00dae6cc528b811304db3b0ab438

add: 1. Prohibit the use of unsafe serialization functions.

TT4erg committed 3 years ago
Unverified
6fc9f02cd5752356d8fe27a8584b6f8a57905f64

add: New entry "Prohibit the use of eval function"

TT4erg committed 3 years ago
Verified
1b6620378d384e2a5fdea25bc6a8ba1a23719b8d

Update Java安全指南.md (#61)

bbaijinping committed 3 years ago
Verified
107608ae3508deaccc509eead791b0a5355140d3

fix: 修正1.1.9描述

mmartinzhou2015 committed 3 years ago

README

The README file for this repository.

代码安全指南

面向开发人员梳理的代码安全指南,旨在梳理API层面的风险点并提供详实可行的安全编码方案。

理念

基于DevSecOps理念,我们希望用开发者更易懂的方式阐述安全编码方案,引导从源头规避漏洞。

索引

规范 最后修订日期
C/C++安全指南 2021-05-18
JavaScript安全指南 2021-05-18
Node安全指南 2021-05-18
Go安全指南 2021-05-18
Java安全指南 2021-05-18
Python安全指南 2021-05-18

实践

代码安全指引可用于以下场景:

  • 开发人员日常参考
  • 编写安全系统扫描策略
  • 安全组件开发
  • 漏洞修复指引

贡献

盼与社区携手,一道维护完善。欢迎提交修订建议,详参阅贡献指南

授权许可

Secure Coding Guide by THL A29 Limited, a Tencent company, is licensed under CC BY 4.0.