Java security risks are well known, but could you provide some insight on the security of some of the open source Java frameworks like Struts, Hibernate, Java Enterprise Edition, etc.? Which of the frameworks is the most secure, and what can be done to harden them?