Write a security audit report in a {{tone}} tone for {{target_audience}} covering {{scope}}, reporting only vulnerabilities at or above {{severity_threshold}} severity using OWASP Top 10 and CVSS scoring.

- For each vulnerability: type, severity, description (attack scenario, impact, current protection), remediation (code fixes, security measures, testing approach).
- Every finding must include a concrete attack scenario relevant to the provided code/system.
- If a vulnerability cannot be confirmed with high confidence, skip this section.
- Recommendations must be actionable and specific.
- Maximum 1500 words.

Paste any relevant background information after these instructions before running.