Need help with JS-SCP?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

144 Stars 36 Forks Creative Commons Attribution Share Alike 4.0 International 168 Commits 0 Opened issues


JavaScript Secure Coding Practices guide

Services available


Need anything else?

Contributors list

JavaScript Web Application Secure Coding Practices is available for download in pdf, MOBI, and ePub.


JavaScript Web Application Secure Coding Practices is a guide written for anyone who is using the JavaScript Programming Language for web development. This book is a collaborative effort by the Checkmarx Security Research Team and it follows the OWASP Secure Coding Practices - Quick Reference Guide v2 (stable) release.

The main goal of this guide is to help developers avoid common mistakes while simultaneously learning a new programming language through a hands-on approach. This book provides an in-depth look at 'how to do it securely, showing the kinds of security problems which could pop up during development.

About Checkmarx

Checkmarx is an Application Security software company, whose mission is to provide enterprise organizations with application security testing products and services that empower developers to deliver secure applications. Amongst the company's 1,000 customers are five of the world's top 10 software vendors, four of the top American banks, and many Fortune 500 and government organizations, including SAP, Samsung and For more information about Checkmarx, visit or follow us on Twitter @checkmarx

About OWASP Secure Coding Practices

The Secure Coding Practices Quick Reference Guide is an OWASP - Open Web Application Security Project, project. It is a "technology agnostic set of general software security coding practices, in a comprehensive checklist format, that can be integrated into the development lifecycle" (source).

OWASP itself is "an open community dedicated to enabling organizations to conceive, develop, acquire, operate, and maintain applications that can be trusted. All of the OWASP tools, documents, forums, and chapters are free and open to anyone interested in improving application security" (source).

How To Contribute

This book was created using a few open source tools. If you're curious about how we built it from scratch, read the How To Contribute section.

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.