Pattern

Hidden Client Assumptions

boundary-assumption-breakage

Misassumptions about client/transport/security boundaries cause requests to fail or secrets to leak—e.g., proxies misclassify WebSocket handshakes, TLS trust managers are applied incorrectly, and frontend dependency compromise grants JWT read/export until supply-chain backdoors are detected.