Ever had the embarrassing 'All your bases are belong to us' moment? Staying safe when creating your custom modules is essential to creating a secure and stable website in Drupal. This session will focus on beginners and intermediate module builders who want to learn more about Drupal APIs in relation to security, find out what all the strange words such as CSRF, XSS or SQL Injection mean and learn how to protect their modules against most common attacks. I'll be sharing specific knowledge I've gained as a member of the Drupal Security Team and from experience doing security audits for large scale sites.