QtCS25 - Qt & Cybersecurity

From Qt Wiki
Jump to navigation Jump to search

Session Summary

Lorem ipsum dolor sit amet, consetetur sadipscing elitr, sed diam nonumy eirmod tempor invidunt ut labore et dolore magna aliquyam erat, sed diam voluptua. At vero eos et accusam et justo duo dolores et ea rebum.

Session Owners

Lorem Ipsum

Consetetur Sadipscing

Notes

Qt security score markers in files

One conclusion: mark all files in library code, but not examples or tests, even if insignificant

Tooling could scan the markers, to warn on creation on new files, without the marker (perhaps from Bots)

Benefit: it's easier to have it in files, than in abandoned gerrit changes, because its close to the files, and abandoned changes are hard to fine

Should we more critical functions outside of files into critical files, when most other functions are normal? Would be beneficial.

Retrieved from "https://wiki.qt.io/index.php?title=QtCS25_-_Qt_%26_Cybersecurity&oldid=44281"