Multi-tenant data isolation assessment covering tenant boundary enforcement across all layers and safe shared resource management.
20
Total Checks
3
Delivery Formats
3
Categories
5
Versions
Included
Never included
PATCH — telemetry-format prose fix: verification instructions still required dotted check IDs (audit.{category}.{check}) while the JSON template and the ingest schema use bare kebab-case slugs; an AI following the prose over the template would emit IDs the schema rejects with a 400. Prose now states bare slugs. No check or criteria changes.
Picked by pack overlap with this audit.
API design quality assessment covering naming consistency, HTTP semantics, request/response shape, security controls, and developer experience.
Comprehensive security audit for REST and GraphQL APIs, covering authentication, authorization, input validation, and protection against OWASP API Top 10 threats.
Production-ready authentication assessment covering session management, login flow security, password handling, and OAuth integrations.
Authorization layer assessment covering access control, resource authorization, API permissions, and admin boundary enforcement.
Secure payment and billing assessment covering payment security, subscription management, pricing enforcement, and customer billing experience.