A more hands on review process
Richard Moore
richmoore44 at gmail.com
Fri Aug 1 11:37:59 BST 2008
On 7/31/08, Stephen Kelly <steveire at gmail.com> wrote:
> Security
> * The application / library has no obvious security flaws.
> * Network accessing protocols
> * html entities ('<', '>', "'", '"', '?') are encoded
For HTML you should quote '<', '>', '"' and '&'. The others are not required.
All places where the application launches external programs should be checked.
Any SQL queries processing untrusted data should be checked.
Cheers
Rich.
More information about the kde-core-devel
mailing list