lmorris3
commented
7 months ago - [ ] T17: Do not only rely on client-side authorization (8)
- [ ] T19: Restrict Application's Access to Database (8)
- [ ] T36: Escape untrusted data in HTML, HTML attributes, CSS, and JavaScript (8)
- [ ] T37: Avoid DOM-based Cross-Site Scripting (XSS) (8)
- [ ] T114: Test system-to-system authentication lockout or throttling (8)
- [ ] T257: Secure cross origin resource sharing (CORS) (8)
- [ ] T279: Avoid dynamically loading any code without proper security considerations (8)
- [ ] T378: Authorize every request for data objects (8)
- [ ] T1144: Prevent Server-Side Template Injection (SSTI) (8)
- [ ] T1365: Mitigate Server Side Request Forgery (8)
skirkman16