Skip to content
Open
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
11 changes: 11 additions & 0 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -45,6 +45,17 @@ information securely handled and stored?
information like keys, passwords, or usernames?
- [ ] Is data retrieved from external APIs or libraries
checked for security issues?
- [ ] Are third-party dependencies pinned, with lock files committed,
and is dependency provenance verifiable (signatures, hashes, audited sources)?
- [ ] Is security-relevant activity logged in a way that supports
incident investigation — auth events, access denials, configuration
changes — without including the credentials themselves?
- [ ] Do error messages or exception traces avoid leaking sensitive
information (stack traces, internal paths, query fragments, partial
secrets) to end users?
- [ ] Is deserialization of untrusted input avoided, or strictly
typed and validated? Unsafe deserialization is a common remote-code-
execution vector.

## Performance
- [ ] Do you think this code change decreases
Expand Down