TechTarget article by Darryl K. Taft
Security is baked into most low-code development platforms, but developers still need to pay attention to security issues and test for vulnerabilities.
The low-code/no-code revolution that helps to fuel digital transformation at organizations by helping nonprogrammers create applications is a big win for productivity, but is it secure? That depends on how you use these tools, experts say…
… In contrast, a low-code security platform would automatically remove malicious data from those fields, so that the application builder doesn’t have to worry about taking care of such issues manually, said Jason Bloomberg, an analyst at Intellyx and author of the e-book Low-Code for Dummies.
“For less experienced developers — including citizen developers– the ability to remove dangerous data is absolutely essential,” Bloomberg said. “Even for more experienced, professional developers, automatic security and compliance controls reduce headaches as well as the possibility of a mistakenly introduced vulnerability.”