This checklist is intended for designers, developers and architects who are involved in the design of a web service or API.
The purpose of this checklist is to audit an API or web service prior to launch, to ensure it is secure against the OWASP top 10.
This checklist is intended to be used in conjunction with the OWASP API Security Top 10. Each item in the checklist is a reference to a corresponding item in the OWASP top 10.
Coming soon...
Contributions are welcome! Please submit a pull request or open an issue to discuss.
This project is licensed under the terms of the MIT license.