Web Developer Security Checklist – Simple Security
Security is not an option for lone coders.
In the past you could throw up a minimally viable product (MVP) without thinking about security. This is no longer the case. Security MUST be a tool in the developer’s toolkit.
Often security is just thought of as an add-on or an afterthought. Organizations that used to refer to development operations as DevOps now call it DevSecOps to ensure that security is not forgotten. Even as a lone-wolf developer you can’t ignore this stuff. Most of all, if you do it will be at your own peril.

Developing secure, robust web applications in the cloud is hard, very hard. If you think it is easy, you are either a higher form of life…