Hacker News new | past | comments | ask | show | jobs | submit login

I wonder where you work to NOT have mandatory security audits.

I'm currently working for a real estate startup and I have to seriously twist their arm to convince them we should authenticate private api requests at all, let alone run vulnerability testing.

Guidelines | FAQ | Support | API | Security | Lists | Bookmarklet | Legal | Apply to YC | Contact