Creating the ”pit of success” as a way to discourage the most severe security practices has by and large been an enormous success. We started doing code audits in 2014. React had come out in March of the previous year, and AWS Lambda came out that November.
