Micronaut Security Guidelines

Apply Micronaut security best practices with secure-by-default API boundaries.

What is covered in this Skill?

• Micronaut security configuration and authentication setup
• Authorization with @Secured and role-based policies
• Endpoint and route protection strategy
• Least-privilege design and policy boundaries
• Secure error/denial behavior
• Sensitive data handling in logs and responses

Scope: Apply recommendations based on the reference rules and good/bad examples.

Constraints

Before applying security changes, ensure the project compiles. After improvements, run full verification.