ASVS Requirement 13.2.4

• Level: 2
• Chapter: V13 Configuration
• Section: V13.2 Backend Communication Configuration
• Source: 0x22-V13-Configuration.md

Description

Verify that an allowlist is used to define the external resources or systems with which the application is permitted to communicate (e.g., for outbound requests, data loads, or file access). This allowlist can be implemented at the application layer, web server, firewall, or a combination of different layers.