How do you test the security of your applications? Carl and Richard chat with Kim Carter about purpleteam, an open-source library for testing web applications as part of your CI/CD pipeline. Kim talks about OWASP in general and yes, SQL injection (and injection in general) is still the number one security risk - but there are plenty more. Don't be an easy victim, start making security testing part of your build and deployment process!