Northern Kentucky University
Open Source PHP Security Review
Institution
Northern Kentucky University
Faculty Advisor/ Mentor
James Walden
Abstract
We present work on evaluating the security of open source PHP projects. We are analyzing four years of data for 10+ projects gathering measures of security (vulnerability rate) and standard quality metrics (cyclomatic complexity, SLOC and nesting). This project also includes the development of automated processes, requiring the creation of Ruby scripts, for data collection and metric computations.
Open Source PHP Security Review
We present work on evaluating the security of open source PHP projects. We are analyzing four years of data for 10+ projects gathering measures of security (vulnerability rate) and standard quality metrics (cyclomatic complexity, SLOC and nesting). This project also includes the development of automated processes, requiring the creation of Ruby scripts, for data collection and metric computations.