Hi...

I'm evaluating various open source apps regarding security. In particular, I'm interested in how apps deal with user input from forms, parsing/processing URLs, and dealing with database access regarding inserts/updates/etc...

Before I dive into the code, I was wondering if I could talk to someone who's knowledgable about these issues with Sugar. Are there classes/libs that are used within the app to facilitate these issues?

Does Sugar go through a rigorous Security audit regarding these issues?

Thanks

Bruce
bedouglas@earthlink.net