13 lines
305 B
Markdown
13 lines
305 B
Markdown
# Security Review Guide
|
|
|
|
## Check for
|
|
- unsanitized input,
|
|
- SQL or shell injection,
|
|
- insecure deserialization,
|
|
- secret leakage,
|
|
- missing authz checks,
|
|
- unsafe filesystem or network defaults.
|
|
|
|
## Review note pattern
|
|
`Blocking: this path accepts untrusted input and passes it to X without validation.`
|