m3ta I completely agree. Through my time as a computer science student software and web security was a very small part if mostly absent from the learning I had. I knew nothing of OWASP for example. Having learned it now, it almost gives me chills the thoughts of the vulnerabilities unwitting developers can introduce into applications fresh out of university.