diff --git a/README.md b/README.md
index c983c6a..f6f6b51 100644
--- a/README.md
+++ b/README.md
@@ -20,12 +20,12 @@
- [Documentation](#documentation)
- [Testing](#testing)
- [Package Management](#package-management)
+- [Security & Compliance](#security--compliance)
- [AI-Native Tasks](#ai-native-tasks)
- [Context](#context)
- [Fun \& Experimental](#fun--experimental)
- [Start from Scratch](#start-from-scratch)
- [Contributing](#contributing)
-
---
## Everyday Dev Tasks
@@ -135,7 +135,37 @@
- `// Set up Renovate or Dependabot for auto-updates`
Best for active projects with CI/CD.
+## Security & Compliance
+
+- `// Scan dependencies for known CVEs and security vulnerabilities`
+ Security audits for npm, pip, Maven, or other package managers.
+
+- `// Add input validation to {these specific} API endpoints`
+ REST APIs or GraphQL endpoints needing request validation.
+
+- `// Implement rate limiting for {this specific} service`
+ Express, FastAPI, Flask, or Django apps preventing abuse.
+
+- `// Add security headers to HTTP responses (CSP, HSTS, X-Frame-Options)`
+ Web applications requiring production-ready security configuration.
+
+- `// Audit this code for SQL injection vulnerabilities`
+ Database-heavy applications with dynamic queries.
+
+- `// Generate a SECURITY.md with vulnerability reporting guidelines`
+ Open-source projects needing security disclosure policies.
+
+- `// Add JWT-based authentication middleware to these routes`
+ APIs requiring token-based authentication and authorization.
+
+- `// Implement CORS configuration for these endpoints`
+ Web APIs needing cross-origin resource sharing setup.
+
+- `// Add HTTPS/SSL configuration to this server setup`
+ Production deployments requiring encrypted connections.
+- `// Check for hardcoded secrets and credentials in this codebase`
+ Security-conscious projects preventing credential leaks.
## AI-Native Tasks