Security Patterns When to Load - Trigger : Auth flows, encryption, secrets management, CORS configuration, input validation, rate limiting - Skip : No security surface involved in the current task Security Implementation Workflow Copy this checklist and track progress: Authentication Patterns JWT (JSON Web Tokens) JWT Verification Middleware Session-Based Auth OAuth 2.0 / OIDC Flow Summary API Key Authentication Authorization Models RBAC (Role-Based Access Control) Resource-Level Authorization Password Handling Password Policies Secrets Management Secret Rotation Encryption Patterns In Transi…