Below are some common mistakes developers make while development. Most of the mistakes will not impact the functionality of the application so tendency is to make the mistake subconsciously. Security should be by design and it is not something we should incorporate after the development. OWASP guidelines should be taken as high priority in addition to this list. Writing sensitive information such as passwords in the paper or sticky notes Sharing credentials between team members Hard-coding sensitive information as plain text, including passwords in the application in configuration files, databases and comments Not encrypting the database Use of untrusted code…