Security

Security

15 scenarios grouped by topic. Click any to see the right move and why the common mistakes are wrong.

Password storage

JWT

CSRF

XSS

SQL injection

Authorization (BOLA/IDOR)

Secrets management

TLS

Crypto choice

OAuth/OIDC

Rate limiting / abuse

Logging & PII

Multi-tenant isolation

Input validation

Session management