The intent at a High Level
Preparing for the review
IDE that allows:
Global searches across the codebase
Prerequisites
Overview of how the app works
Important functionalities
Frameworks and libraries or SBOM
Add-ons or plugins in use
Common vulnerabilities for the application type
Secure Code Review Criteria
Authentication and User Management
Authorization
Session Management
Encryption & Cryptography
Exception Handling
Reducing the attack surface
Last updated