As a software developer who develops secure code, you must add vulnerability assessments to your list of code reviews. You know that the code you write using a web application framework may only be a ________?