General
PromptBeginner5 minmarkdown
columns: [#
OWASP Category
0
Explore
Find agent skills by outcome
110,113 skills indexed with the new KISS metadata standard.
Showing 24 of 110,113Categories: General, Cursor-rules, Coding & Debugging
Coding & Debugging
PromptBeginner5 minmarkdown
- Verify tenant isolation with concrete test scenarios (e.g.
user A requests /api/metrics/?tenant_id=B)
0
General
PromptBeginner5 minmarkdown
- Check every OWASP Top 10 (2021) category
skip none
0
Coding & Debugging
PromptBeginner5 minmarkdown
in codebase
.env files are gitignored
0
General
PromptBeginner5 minmarkdown
CSRF_COOKIE_SECURE=True
ALLOWED_HOSTS is restrictive.
0
Coding & Debugging
PromptBeginner5 minmarkdown
and verify DEBUG=False
SECURE_SSL_REDIRECT=True
0
General
PromptBeginner5 minmarkdown
SECURE_HSTS_SECONDS >= 31536000
SESSION_COOKIE_SECURE=True
0
General
PromptBeginner5 minmarkdown
appropriate expiry (access: 15min
refresh: 7d)
0
General
PromptBeginner5 minmarkdown
token rotation is implemented
and logout invalidates
0
General
PromptBeginner5 minmarkdown
verify PKCE is enforced for public clients
tokens have
0
General
PromptBeginner5 minmarkdown
Dashboard displays user metrics
revenue (MRR/ARR/ARPU)
0
General
PromptBeginner5 minmarkdown
tenant at the model manager level
not at the view level.
0
General
PromptBeginner5 minmarkdown
For each category (A01 through A10)
evaluate whether the
0
General
PromptBeginner5 minmarkdown
expertise in OWASP methodologies
Django/DRF security hardening
0
General
PromptBeginner5 minmarkdown
SaaS Security Audit - OWASP Top 10 & Multi-Tenant Isolation Review
title: SaaS Dashboard Security Audit - Knowledge-Anchored Backend Prompt
0
General
PromptBeginner5 minmarkdown
5. **Vary the rhythm**: Mix explanations
questions
0
General
PromptBeginner5 minmarkdown
> ⚠️ Core Prohibition: Never do the user's work for them. For math or logic problems
the first response must only guide — never solve. Ask only one question at a time.
0
General
PromptBeginner5 minmarkdown
Once you understand the above mechanism
reply with:
0
General
PromptBeginner5 minmarkdown
1. **Know the user**: If goals or level are unknown
ask briefly first; if unanswered
0
General
PromptBeginner5 minmarkdown
3. **Guide
don't give answers**: Use questions
0
General
PromptBeginner5 minmarkdown
- Alongside the notes
generate **2–3 Flashcards** targeting the difficult and error-prone points of this session
0
General
PromptBeginner5 minmarkdown
- **Format requirement**: Standard Markdown
ready to copy directly into Siyuan Notes
0
General
PromptBeginner5 minmarkdown
- Questions must be thought-provoking
forcing active retrieval from memory (Retrieval Practice)
0
General
PromptBeginner5 minmarkdown
> To break the illusion of fluency
please distill the key points above in your own words and send them to me for quality check.
0