You’re viewing an example audit
Fortivibe reviews your app for the security, data, reliability, and deployment issues that can turn a promising prototype into a production headache.
Run an Audit on My App8 Findings in Fix Before Launch
8 findings
- Fix Before Launch 8
- Fix Soon 4
- Polish Later 4
|
secrets |
Critical |
.env file appears committed |
||
|
secrets |
Critical |
OpenAI API key appears exposed client-side |
||
|
security |
High |
CORS allows wildcard origin |
||
|
security |
High |
Raw error may be returned to client |
||
|
validation |
High |
API route appears to be missing input validation |
||
|
abuse |
High |
AI endpoint appears to lack rate limiting |
||
|
session |
High |
Auth token appears stored in localStorage |
||
|
security |
High |
API route may leak stack traces |