How I performed a security audit of my own backend.