()

AC-4(25): Information Flow Enforcement | Data Sanitization
SP-TE-29: Web application attacks or code injection attack



1. API inbound security pattern [Threat Model]