Mendix CF Buildpack does not meet OWASP standards

After some pen tests of our applications it seems that the Mendix CF buildpack does not meet OWASP standards. Question is who is responsible that the (default) CF Mendix Builpack meets the OWASP standards? Please let me know your opinion!  
0 answers