Worried about the security of my application.<p>Is there anything you recommend that helps one ensure that all holes are filled and the site is hacker-proof?<p>Something that basically enumerates the vulnerabilities that you have to be aware of and what they stem from. And then possibly some type of tutorials that shows you how to implement them?
For the client, there's ScanJS [0] which is implemented as a set of eslint rules [1] if you're using eslint.<p>It's a good first pass which will point out the most obvious / common security mistakes in JS in the browser. Though be warned that it will likely raise a fair few false positives. It's probably most useful as an informational dev-time tool. I wouldn't fail builds on it unless you want to be adding eslint-ignore comments everywhere :-)<p>[0] <a href="https://github.com/mozilla/scanjs" rel="nofollow">https://github.com/mozilla/scanjs</a><p>[1] <a href="https://github.com/mozfreddyb/eslint-config-scanjs" rel="nofollow">https://github.com/mozfreddyb/eslint-config-scanjs</a>