Low-code and no-code platforms enable business users to build applications without traditional development — but security controls often lag behind ease of use. Security risks include: insufficient access controls in citizen-developed applications, data exposure through poorly configured integrations, authentication bypasses in custom workflows, API security gaps in automated processes, and shadow IT proliferation. Security assessment evaluates both the platform configuration and the applications built on it, identifying vulnerabilities that business users may not recognise.
Emerging
Low-Code/No-Code Platform Security: When Citizen Developers Build Business Applications untuk Perusahaan Indonesia
Low-code platforms democratise app development but introduce security risks. Testing applications built by non-developers. Guidance for ID market.