Code Review Summary: Once you have identified the relevant areas of security to review from the first level of the VAPFD, work through the second level. At this stage, you should:

Manually inspect the code base provided to identify which vulnerabilities exist by uploading the Module Two Written Assignment Code Base, linked in Supporting Materials, as a new project into Eclipse.

Refer to the Uploading Files to Eclipse Desktop Version Tutorial, linked in Supporting Materials, for how to open the code base for review.

Document your findings for the software development team in the Module Two Written Assignment Template provided.

Mitigation Plan: Once you have manually inspected the code and identified the security vulnerabilities:

Describe potential mitigation techniques. For example, describe secure software designs that you could use to address the software security vulnerabilities you identified.

It may be helpful to refer to the Module Two Resources, including your textbook, the Secure Coding Guidelines for Java SE$,$ the Common Vulnerabilities and Exposures $($CVE$)$ list, and the National Vulnerability Database.

Document your findings for the software development team in the Module Two Written Assignment Template provided. This plan will be used by the software development team to address all vulnerabilities in the code.