General
PromptBeginner5 minmarkdown
- Information disclosure in error responses: stack traces
internal paths
0
Explore
Find agent skills by outcome
77,569 skills indexed with the new KISS metadata standard.
Showing 24 of 77,569Categories: Data & Insights, Communication, Data, General
General
PromptBeginner5 minmarkdown
- Authentication weaknesses: token leakage
missing expiration
0
General
PromptBeginner5 minmarkdown
- Inadequate retry logic: no retries
or retries without backoff causing retry storms
0
General
PromptBeginner5 minmarkdown
- **Resource Utilization**: CPU <70% at expected load
memory stable without unbounded growth
0
General
PromptBeginner5 minmarkdown
- **Error Rates**: 5xx errors <0.1%
4xx errors <5% (excluding 401/403)
0
General
PromptBeginner5 minmarkdown
- Configure meaningful alerts based on SLI/SLO thresholds (e.g.
p95 latency > 500ms
0
General
PromptBeginner5 minmarkdown
- **Response Time**: Simple GET <100ms (p95)
complex query <500ms (p95)
0
Data
PromptBeginner5 minmarkdown
- Verify required vs optional field handling
data type correctness
0
General
PromptBeginner5 minmarkdown
- Test proper error propagation: errors are meaningful
not swallowed or leaked as 500s
0
General
PromptBeginner5 minmarkdown
- Identify resource bottlenecks (CPU
memory
0
General
PromptBeginner5 minmarkdown
- Profile endpoint response times at baseline load
capturing p50
0
Data
PromptBeginner5 minmarkdown
- **Test system resilience** by simulating network failures
database connection drops
0
General
PromptBeginner5 minmarkdown
- **Profile endpoint performance** by measuring response times under various loads
identifying N+1 queries
0
General
PromptBeginner5 minmarkdown
- **Execute load and stress tests** by simulating realistic user behavior
gradually increasing load to find breaking points
0
General
PromptBeginner5 minmarkdown
- [ ] Remediation steps are specific and implementable
not generic advice.
0
General
PromptBeginner5 minmarkdown
- Examine what controls are absent
not just what is present.
0
General
PromptBeginner5 minmarkdown
- [ ] Findings include severity
description
0
Data
PromptBeginner5 minmarkdown
- **Impact**: Business impact
data exposure risk
0
General
PromptBeginner5 minmarkdown
Before finalizing
verify:
0
General
PromptBeginner5 minmarkdown
- **Priority**: Critical
high
0
General
PromptBeginner5 minmarkdown
- The scope of the audit (full application
specific module
0
General
PromptBeginner5 minmarkdown
In `TODO_vulnerability-auditor.md`
include:
0
General
PromptBeginner5 minmarkdown
- Compliance standards applicable to the project (OWASP
PCI DSS
0
General
PromptBeginner5 minmarkdown
- **HTTP Hardening**: HTTPS redirection
HSTS
0