Version
0.1.0
Security Review & Secure DefaultsHigh ReliabilityHigh-Risk Workflow
Secure Endpoint Review
Combines static checks and manual review to enforce auth, validation, and data-handling controls in endpoint implementations.
Last Updated
Apr 22, 2026
Verification Type
static analysis, manual review required
Downloads
0
Required inputs
endpoint_code (code)
Handler and middleware code for reviewed endpoint.
auth_policy (markdown)
Role and permission requirements for endpoint access.
Expected outputs
security_findings (markdown)
Severity-ranked findings and remediation guidance.
secure_patch (diff)
Patch implementing required security changes.
Included checks and assets
scripts/scan_fastapi_route.py (script)
Performs basic static scans for missing auth and weak validation.
references/review-template.md (reference)
Standardized security review output template.
references/owasp-mapping.md (reference)
Maps common endpoint flaws to OWASP risk categories.
references/secure-defaults-checklist.md (reference)
Operational secure-default checklist for endpoint reviews.
Failure modes
- Context-specific abuse cases are missed by static checks.
- Policy ambiguity leads to inconsistent authorization controls.
- Fixes may break backward compatibility if not staged carefully.
Ideal use cases
- New API endpoint reviews
- Authentication refactors
- PII-handling service changes
Example runs
Invoice endpoint auth hardening
Validated sample runDetected missing role check and unsafe error detail leakage.
Input preview
FastAPI route + policy matrix
Output preview
2 high findings and patch recommendations
Changelog summary
0.1.0 · Apr 22, 2026
Initial release for endpoint security review workflow.
Links
Inspect the source, read authored documentation, or download the published skill bundle.