Teaching Good Developers to be Bad People
From a young age, we are taught to be good people. Don't touch that!, Don't go over there! Be careful, you'll break it!_x000D_ We are taught to anticipate what the behaviour of a tool, system or environment should be and interact with it accordingly. As developers, we apply these rules and behaviours to our code. _x000D_ Not everyone sees the world like this. Security vulnerability often stems from people ignoring the expected behaviour, challenging the edge cases and constantly asking 'what if I press this?'_x000D_ Are we limiting ourselves by being 'good developers'? Can we undo years of education and throw away the rule book? Will that make us bad people or better developers?