Drupal 10/11 Contrib Security Pitfalls: A Hardening Checklist That Actually Works

If you maintain a Drupal 10/11 contrib module, the biggest security misses are still predictable: missing access checks, weak route protection, unsafe output, and incomplete release hygiene. The fastest hardening path is to enforce explicit access de...