Audit Deliverables
- Threat model and crown jewels map
- Attack surface map across routes, APIs, SDKs, webhooks, admin, deployment, and payments
- Safe test environment plan
- Role bypass, CSRF, tenant isolation, session, rate-limit, and revenue leakage checks
- Nigerian breaker council review
- Readiness score, fix tickets, and retest plan