Name		Name	Last commit message	Last commit date
parent directory ..
README.md		README.md
detecting-security-vulnerabilities.png		detecting-security-vulnerabilities.png
https-configuration.png		https-configuration.png
interpretation.md		interpretation.md
keeping-frameworks-and-libraries-up-to-date.png		keeping-frameworks-and-libraries-up-to-date.png
results.csv		results.csv
safely-integrating-third-party-services.png		safely-integrating-third-party-services.png
understanding-security-threats.png		understanding-security-threats.png
understanding-the-browser-security-model.png		understanding-the-browser-security-model.png

README.md

Web Security Developer Experience Short Survey

Survey run between 2023-05-18 - 2022-05-25 to 10% of users on API and HTTP pages. See background discussion.

To keep your Web app and its users safe from security vulnerabilities, rate how easy or challenging are the following aspects:(options listed in random order, each option listed with 5 choices: "very easy", "easy", "neutral", "somewhat challenging", "very challenging")
- Understanding security threats and how they might apply to your web application
- Understanding the security model of Web browsers (e.g. same-origin policy, CORS, permissions policy)
- Keeping up to date the frameworks and libraries your app depends on
- Integrating safely third-party services (e.g. login, payment)
- Configuring the server to match the required security properties (e.g. SSL, HTTP headers)
- Detecting security vulnerabilities introduced in your development workflow (e.g. cross-site scripting)
What are the other main security-related challenges you're facing when developing and deploying Web content? (free form text entry)