Validate authorization failures including IDOR, privilege escalation, and missing access controls. Test by attempting unauthorized access with lower-privileged credentials. Use when testing CWE-639 (I
packages/core/securevibes/skills/dast/authorization-testing(main)