UnixTime

Research Note

Secure Development Compliance Review Checklist

Use this checklist to verify that a project or development team follows secure development rules.

On this page

When to use this

Use this checklist to verify that a project or development team follows secure development rules.

Checklist

  • Secure development standard identified.
  • Developers trained.
  • Secure code review performed.
  • Dependency scanning performed.
  • Secrets handling checked.
  • Vulnerability findings tracked.
  • Third-party code assessed.
  • Release gates applied.
  • Noncompliances assigned and followed up.

Review record

Project/team Standard used Review date Findings Action owner Due date
TBD TBD TBD TBD TBD TBD