Nowadays when you start a software project, you probably begin with selecting an open source framework that provides you with the needed plumbing so you can focus on your customers business functionality. The best part, most frameworks are open source and can be used free of charge. Yes, the code is free, but that is not the only thing you get for free. Vulnerabilities are everywhere. Keeping your own code secure is one thing, but what to do about the rest?