Files
036. Do not deploy temporary files043. Define an explicit content type037. Parameters without sensitive data044. Define an explicit charset039. Define maximum file size045. Remove metadata when sharing files040. Compare file format and extension046. Manage the integrity of critical files041. Scan files for malicious code339. Avoid storing sensitive files in the web root042. Validate file format340. Use octet stream downloads