Draft a code review checklist for secure REST API development when exposing internal financial data systems via GraphQL endpoints

Generate draft a code review checklist for secure rest api development when exposing internal financial data systems via graphql endpoints for Computer Systems Design and Related Services industry

Computer Systems Design and Related Services

Agent Configuration

Login required: You need to sign in to execute this agent.

Click to upload or drag and drop

Allowed: PDF, VSDX, DRAWIO, PNG, JPG, XML

Max size: 50MB

Upload current API system architecture diagrams, data flow documentation, or existing service blueprints that show how internal financial systems are connected
Specify the sensitivity classification of the financial data that will be exposed through GraphQL endpoints
Select all applicable financial regulations and compliance frameworks that the API must adhere to
List specific security requirements, authentication methods, and authorization scopes needed for different API user roles
Define the organization's risk tolerance level for financial data exposure through APIs
Specify depth and complexity limits for GraphQL queries to prevent resource exhaustion attacks
Define field-level security controls for sensitive financial data including masking patterns and tokenization requirements
Select the appropriate monitoring granularity for API security events and performance metrics
Define how frequently the code review checklist should be updated to address new threats and regulatory changes
Indicate the security expertise level of the development team to calibrate checklist detail and recommendations
Describe existing legacy financial systems that need to be integrated with the new GraphQL API, including mainframe connections, batch processes, or service interfaces