# security

This index provides an overview of the contents in this directory.

## Files

### JWT Security Review

**File:** `jwt-security.mdc`

JWT security review - flag insecure patterns

### Timing Safe Compare Vulnerabilities

**File:** `timing-safe-compare-vulnerabilities.mdc`

Vulnerability reports for timing-safe compare functions. Referenced by timing-safe-compare.mdc.

### Constraint: Timing Safe Compare

**File:** `timing-safe-compare.mdc`

Security rule for timing-safe secret comparison. Use SHA3-256 hashing instead of timing-safe compare functions.