An anonymous reader writes: I work at a company that makes software for call center optimization. Recently my boss arranged for my code to be tested by IBM AppScan tools for cross site scripting vulnerabilities. It found 233 of them, but most of them are false positives. Now my boss won't ship my code and has inserted an extra level of oversite on my outputs. No doubt other developers have experienced what I have, being smarter than IBM isn't hard after all, but I'm not sure how to convince my boss of this. Any tips?
Attend or create a Slashdot 20th anniversary party! DEAL: For $25 - Add A Second Phone Number To Your Smartphone for life! Use promo code SLASHDOT25. Check out the new SourceForge HTML5 Internet speed test. ×