owasp-top-10
Installation
SKILL.md
OWASP Top 10
Protect against the most critical web security risks.
1. Broken Access Control
# ❌ Bad: No authorization check
@app.route('/api/users/<user_id>')
def get_user(user_id):
return db.query(f"SELECT * FROM users WHERE id = {user_id}")