Keep your code safe - Tips from the security team
This session is aimed at the typical Drupal developer.
The session starts with a short overview of the most common security issues, their consequences and how you can use the Drupal API to prevent them. The second half of the talk is devoted to string handling as the most prevalent vulnerability, Cross site scripting (XSS), happens when you get it wrong. You should leave the session with a clear understanding of when to use filter_xss, check_plain, check_url & check_markup.