Explore prompts tagged with Security
This document has been prepared to open the Next.js application I developed to a technical review within the framework of 2025 standards. The sections below outline the “ideal level” I am targeting in the project and the evaluation criteria I expect from you.
This document defines a safe, non-destructive external security testing standard for production systems. It outlines how to inventory APIs, validate authentication and authorization boundaries, detect data leakage and misconfigurations, and assess CDN, web, and admin surfaces using low-noise techniques. The focus is on risk identification and remediation, not exploitation, ensuring production stability and user data protection while delivering clear, actionable security findings.