Merge branch 'main' into localden/authz-updates

localden · web-flow · commit 67dce3a0b65f · 2025-09-23T10:50:32.000-07:00
diff --git a/docs/specification/draft/basic/security_best_practices.mdx b/docs/specification/draft/basic/security_best_practices.mdx
@@ -335,3 +335,4 @@ Client guidance:
 - Treating claimed scopes in token as sufficient without server-side authorization logic
 
 Proper minimization constrains compromise impact, improves audit clarity, and reduces consent churn.
+

Original file line number	Diff line number	Diff line change
`@@ -335,3 +335,4 @@ Client guidance:`
`335`	`335`	`- Treating claimed scopes in token as sufficient without server-side authorization logic`
`336`	`336`
`337`	`337`	`Proper minimization constrains compromise impact, improves audit clarity, and reduces consent churn.`
	`338`	`+`