How secure is your stack?

Each answer earns 0–3 points based on how well it reflects security best practices. The maximum score is 30 (10 questions × 3 points each). Higher is safer.

No. Everything runs entirely in your browser. Nothing is stored or transmitted.

Focus on Critical items first. Authentication weaknesses (weak hashing, no rate limiting) are the most commonly exploited. The results section shows your specific gaps in priority order.

It does not test your infrastructure, third-party dependencies, business logic vulnerabilities, or physical security. It focuses on the most common code-level web application weaknesses.