Hank, On Fri, 12 Apr 2019 at 09:41, Hank Edwards <hedwa...@crawfordtech.com> wrote: >We've recently discovered that the use of C is considered a code injection >risk by security analysis tools, such as ones that check for OWASP 2017.
I contribute to https://github.com/OWASP/Top10/pull/450 Can you please disclose the specific candidate[s] your security analysis tool has cited within the OWASP Top Ten 2017 release? -- Regards, Christian Heinrich http://cmlh.id.au/contact
