John wants to make sure that his outsourced code development efforts are as secure as possible. What is NOT a common practice to ensure secure remote code development?

Although auditing some libraries or libraries that are custom-developed for the code is common, auditing all libraries used in the code is only conducted in exceptional situations. The remainder of these practices is all commonly used when working with outsourced code development teams.