This repository contains tips for preventing common vulnerabilities in Drupal modules. It is based on the analysis of 2 years of security advisories and patches.
If you find a security issue in a Drupal module you should report it to the security team.
This page contains a list of core issues that would prevent some of these security problems.
Instead of contributing to this repository, I think the goal should be to integrate this into the drupal.org documentation.
This work is licensed under CC BY-SA 2.0.