Aaron Costello is the Offensive Security Engineer at AppOmni. As an Offensive Security Engineer at AppOmni, I frequently see Salesforce environments that become compromised due to security vulnerabilities introduced through custom apps and experiences. To help Salesforce developers more securely utilize the benefits of custom components, I recently published a whitepaper detailing some of the most common issues I’ve come across. If you are a developer writing custom Apex code, or a security practitioner in charge of overseeing the security of custom components, I recommend reading the full-length whitepaper titled Lightning Components: A Treatise on Apex Security from an External Perspective.
