OWASP Non-Human Identity Top 10 - 2025: A Critical Security List
2025-02-04
The OWASP Non-Human Identity (NHI) Top 10 - 2025 outlines the ten most critical risks associated with using non-human identities (like bots and automated tools) in application development. Compiled using real-world breach data, surveys, and the OWASP Risk Rating Methodology, this list helps developers understand and mitigate significant security threats posed by NHIs, which are increasingly vital to modern development pipelines. Contributions to improve the project are welcome.
Development
Non-Human Identity