Ajay Ojha

@ram54118 Please share the code snippet.

@mitanshu-patel ```[RecordLog]``` is not used to log the request. You are mixing three things in one. **For Exception Logging :** Share the code snippet of ```Configure``` method of Startup.cs file...

Thank you for the response and for the context around the project's guiding principles. I fully support and understand the critical need to avoid duplicating general requirements across different technologies....

@elarlang is there any update on this?

Thank you for the response. I may not have been clear enough in my original comment. My concern is not about mandating a specific, universal architecture. The concern is mainly...

Thank you for the feedback, here is the revised proposal: **Verify that the application protects against query injection by ensuring that user-controlled input is treated strictly as data, not as...

This is a fantastic, and it perfectly captures the core principles. I have taken your proposed structure and just polished the flow slightly. "_Verify that the application protects data selection...

> Note: Using parameterized queries or escaping SQL is not always sufficient. Query parts such as table and column names (including "ORDER BY" column names) cannot be escaped. Including escaped...

@tghosth I will make changes in the requirement content after your confirmation, which proposal we should go with, waiting for your inputs to proceed further.

Thank you for sharing the broader context regarding priorities and bandwidth — I absolutely respect the time and effort that goes into maintaining a project like ASVS. However, I want...