A Developer's Oath

  • I shall use the right tool for the job
  • I shall work on better accessibility
  • I shall not roll my own crypto
  • I shall not store credentials in a repo
  • I shall sanitize my inputs (XKCD #327)
  • I shall maintain frequent backups
  • I shall perform security updates
  • I shall handle passwords properly
    • Avoid password reuse (XKCD #792)
    • Avoid simple passwords
    • Use a password manager
    • Use two-factor authentication
    • Encrypt stored passwords
    • Do not send password reminders in plain text
  • I shall avoid falsehoods about