The Absolute Zero

Oct 21, 2020

The rule number 0 in Type Driven Design is:

No code = no issues. No sinks = no vulnerabilities. No user controlled input = no vector of attack.

Based on that:

always delete obsolete, dead, unreachable code.
do not ask user to provide more input than needed. In number of situations needed data can be generated by the system. e.g. name of the uploaded file

Sign up to discover human stories that deepen your understanding of the world.

Distraction-free reading. No ads.

Organize your knowledge with lists and highlights.

Tell your story. Find your audience.

Read member-only stories

Support writers you read most

Earn money for your writing

Listen to audio narrations

Read offline with the Medium app

Senior Software Engineer at Intetics Inc., AppSec Manifesto evangelist

Write a response

What are your thoughts?

Also publish to my profile

Help
Status
About
Careers
Press
Blog
Privacy
Terms
Text to speech
Teams