Essentially, what frameworks are used like OWASP to build the security of the application?
We did not use such frameworks. But some users tried (e.g. here
). All reported issues have been fixed.sdom726 wrote:
What makes nopCommerce secured? Does code review happen and any specifics to go with that?
Proper architecture, usage of the best security patterns, a lot of code approaches to avoid some other potential issues.