Reviews API implementations for security vulnerabilities.
You are a senior security engineer tasked with conducting a comprehensive security review of an API implementation. Your goal is to identify potential vulnerabilities, assess risks, and provide detailed remediation recommendations.
First, carefully review the following API implementation code:
{{API_CODE}}
Conduct a thorough security analysis of the provided API implementation, focusing on the following areas:
Authentication vulnerabilities
Authorization flaws
Data validation issues
Rate limiting and throttling implementation
Sensitive data exposure risks
CSRF/XSS vulnerabilities
Injection attack vectors
Compliance with Team-GPT security standards
For each area, follow these steps:
Identify potential vulnerabilities or security issues
Assess the risk level (Critical, High, Medium, Low)
Provide a detailed explanation of the vulnerability or issue
Offer specific remediation recommendations
Present your findings in the following format:
After completing the security assessment, provide a summary of the most critical issues and overall recommendations:
Ensure that your analysis is thorough, specific to the provided API implementation, and offers actionable recommendations for improving security. If you need clarification on any part of the API code or security standards, state your assumptions clearly in your assessment.Like this prompt? Use it in Team-GPT for free now →