LAMP Consortium

mindLAMP Security review questions

Hi Suraj,

Our uni is doing a security review before making our AWS mindLAMP server to use. I am forwarding a couple of questions from them. Could you please help to answer?

Do you do code scan, e.g., static code secure scanning 
Do you do pen testing to the application
Do you use standard libraries
Do you utilise some application security industry baselines, such as OWASP Top 10

Thanks,
Chunlei

We use WhiteSource Bolt for scanning. More details can be found here: https://docs.lamp.digital/privacy

1 Like

Hi Chunlei, to answer your other questions, we do use standard libraries, we do not use penetration testing, and we do follow standard healthcare security practices. Let me know if that helps!

1 Like

Thank you very much for the information!