Advanced Security Testing in SIBANGKU: Finding CSV Formula Injection Before It Reached Users

Unit tests are good at checking whether internal logic behaves correctly. But not every risk in a web application is visible from ordinary unit tests. In the SIBANGKU project, I learned this through t