At Secure Code Warrior®, we have a category of challenges titled 'Using Known Vulnerable Components'. These challenges quiz the user's knowledge of vulnerable/secure commonly used packages and the versions associated with them.
We don't expect developers to know the version numbers by heart. They can simply be looked up just like they would in a normal environment. These challenges are just meant to illustrate the dangers of using old libraries. It's more about the general lesson than the specific challenge scenario you're being presented with.
Note: We're aware that developers maybe just want to stay in the platform environment and we are looking for better solutions for those challenges.
Please sign in to leave a comment.