I need my code audited for security holes. My partner thinks that it would be less expensive to audit one lump JS file and no directories other than what is absolutely necessary.
I think that using Iron-Router and following a standard directory structure, even though creates more files to look at, would be easier to audit due to the fact everything is well organized.
The bottom line is to save money on apparently expensive auditing costs.
Any idea of the cost range for auditing a administration back-end with 25 or so 'pages' / 'routes' ? Do they rather not try to hack into the server as a test, or is that different from auditing?
Thanks!