Comprehensive security review covering auth, data validation, secrets management, transport security, and error handling.
This audit evaluates 34 security checks across 5 categories: authentication and session management, input validation and data sanitization, secrets and credentials management, transport layer security, and error handling. Designed for vibe-coded projects where security is often an afterthought, it surfaces the vulnerabilities most commonly introduced during rapid AI-assisted development.
34
Total Checks
3
Delivery Formats
5
Categories
6
Versions
Quality hardening: enumeration language, numeric thresholds, cross-references, negative guardrails, measurement-on-pass, and quoting patterns across all 34 checks. Manifest tolerances tightened to exact.
2026-04-02
Added chunked format for browser-based tools
2026-03-01
Improved Step 3: paste URL is now primary submission method
2026-03-01
Hardened curl commands with -sS -L flags for redirect following and error visibility. Added response validation guidance to Step 3.
2026-02-23
Added ORM detection for input sanitization checks
2026-02-15
Major restructure: split into 5 categories
2026-01-20
Copy the prompt in your preferred format above.
Paste into your AI coding tool (Claude Code, Cursor, Bolt, etc.).
Let the AI run all checks. Review the structured JSON output it produces.
Submit the JSON telemetry block to AuditBuffet for scoring and benchmarks.
Paste your JSON telemetry to get scores and benchmarks.
Submit Results