[OWASP Top 10 CI-CD Security Risks](../../Standards/other/OWASP%20Top%2010%20CI-CD%20Security%20Risks.md)

[a-8.25-Secure-development-life-cycle](../../Standards/ISO27x/OST/27002/EN/a-8.25-Secure-development-life-cycle.md)
[a-8.26-Application-security-requirements](../../Standards/ISO27x/OST/27002/EN/a-8.26-Application-security-requirements.md)
[a-8.27-Secure-system-architecture-and-engineering-principles](../../Standards/ISO27x/OST/27002/EN/a-8.27-Secure-system-architecture-and-engineering-principles.md)
[a-8.28-Secure-coding](../../Standards/ISO27x/OST/27002/EN/a-8.28-Secure-coding.md)


NSA has released guidance asking companies to switch to memory-safe languages [PDF](https://media.defense.gov/2022/Nov/10/2003112742/-1/-1/0/CSI_SOFTWARE_MEMORY_SAFETY.PDF)
[Memory safety Wikipedia](https://en.wikipedia.org/wiki/Memory_safety?wprov=sfti1)