“..an excellent cross-platform, language-agnostic checksheet of common software security risks...a brief summary of each of the 19 sins, along with a count of the number of vulnerabilities I found in the Common Vulnerabilities and Exposures database for each one.”

Sins of Software Security

Phpwact.org:

• Character Sets / Character Encoding Issues
• Handling UTF-8 with PHP
• A Catalog of Security Attacks

On A List Apart: secure your code

On Dustin Diaz' site: awkward looking javascript

• Php security blunders
• FACE Faruk's Animated CSS Enhancements
• Stylesheet sanity

A post an Simon Willison's web site:

Google base

I'm not particularly interested in Goole base itself, more in what Simon says about structuring data using attributes that allow to query it and make it interchangeable. I think that XFN and Microformats are products of the same general orientation. Seems to me that that's all the web is about, connecting people and data in the easiest possible way.

PHP Security Consortium :

" Founded in January 2005, the PHP Security Consortium (PHPSC) is an international group of PHP experts dedicated to promoting secure programming practices within the PHP community. Members of the PHPSC seek to educate PHP developers about security through a variety of resources, including documentation, tools, and standards. In addition to their educational efforts, the PHPSC engages in exploratory and experimental research in order to develop and promote standards of best practice for PHP application development "

Tech Tips is "a collection of tips on a very wide-ranging list of topics", digitalparadox is about all kinds of security problems, securityfocus is "the most comprehensive and trusted source of security information on the Internet", hackerscenter "group is aimed at researching into web applications security field".