List the todos publicly to finish them quickly

[mebjas]

We should have OWASP/NodeGoat on Todofy, I tried it on my fork and there are like 8 todos in the master branch. While around 154 todos in secure_express branch & 148 todos in ckarande-master branch

Here's the link: https://todofy.org/r/mebjas/NodeGoat
This will give clear visibility on what all need to be finished, and platform has various feature to assist the process.

p.s: Todofy is an automated issue tracker!

[ckarande]

@mebjas Thanks for the suggestion. I like the todofy report. The challenge is some of these todos are intentened to act as a hint for users to secure the app. We should clarify which TODOs belong to hint category vs project specific

[mebjas]

@ckarande There are a lot of options

• You can use labels, or put up a comment suggesting the same. For example check this todo: https://todofy.org/r/mebjas/NodeGoat/master/169300
• Also if there are certain todos related to library files, you can go to settings and choose to hide todos from any directory or a single file.
• You can also hide todos directly from the dashboard.