Library Application Security
Often when we build software libraries, we know we can't anticipate how they will be used or misused.
When building a library, one key concern is that we want to limit dependencies. This reduces overall attack surface.
When building a library, we want to identify known entry points and design the library to be used only from those.
We know we can't trust input so the contract has to be extremely clear. What input is valid, what will happen when it is not or there is an error condition, and what side effects will calling a function have.
Resources
Support or Contact
Having trouble with the developer pages? Help us update them or [email protected] and we’ll help you sort it out. See something wrong? Get involved and help us fix it!