Rate limiting
Apply request limits to protect the service and keep usage predictable.
Scan protections
Validate input, bound recursion, and sanitize response handling.
SSRF protections
Prevent the scanner from being used as a proxy into internal networks or protected infrastructure.
Authentication
Use scoped keys and session-based auth depending on the access path.
Graph handling
Graph data should be handled as intelligence, not just visualization data. Keep source and confidence attached wherever possible.
Privacy
Avoid exposing unnecessary user details, and make sure scan and workspace data follow a least-privilege model.
A security product has to prove it is safe to use before it can be trusted with sensitive investigations.
