Are there any open source web frameworks that actively protect against the OWASP Top 10 Security Vulnerabilities?
Can pass penetrations testing tools like OWASP Zap Core
Supports standard authentication flows such as create new account, forgot password, login, etc?
Is open source
The intent being to build an application that is secure from the ground up, with best practices already applied.
To me, the programming language is less important here than having these important lessons applied.
Electrode, opensourced by Walmart as the backend app framework they use for walmart.com