Authorization layer assessment covering access control, resource authorization, API permissions, and admin boundary enforcement.
22
Total Checks
3
Delivery Formats
3
Categories
4
Versions
Included
Never included
Quality hardening: added counting/enumeration to all checks, numeric thresholds, quoting requirements, negative guardrails, measurement-on-pass reporting, and cross-references. Manifests tightened to exact tolerances.
2026-04-02
Added Step 3 submission instructions to chunked format; improved Step 3 in full format (paste URL is now primary submission method)
2026-03-01
Hardened curl commands with -sS -L flags for redirect following and error visibility. Added response validation guidance to Step 3.
2026-02-23
Initial release
2026-02-20
Picked by pack overlap with this audit.
Comprehensive security audit for REST and GraphQL APIs, covering authentication, authorization, input validation, and protection against OWASP API Top 10 threats.
Production-ready authentication assessment covering session management, login flow security, password handling, and OAuth integrations.
Data handling assessment across the AI processing pipeline, covering storage, retention, PII protection, and user control over third-party model data sharing.
Copy the prompt in your preferred format above.
Paste into your AI coding tool (Claude Code, Cursor, Bolt, etc.).
Let the AI run all checks. Review the structured JSON output it produces.
Submit the JSON telemetry block to AuditBuffet for scoring and benchmarks.
Paste your JSON telemetry to get scores and benchmarks.
Submit Results