| Layer | Finding | |-------|----------| | | if (page > totalPages) return emptyList(); – the > should have been >= . The off‑by‑one caused page 0 (valid) to be treated as out‑of‑range after the API version bump introduced a zero‑based page index . | | Deploy | The new API version ( v2.4.1 ) was feature‑flagged but the flag was mistakenly enabled for all environments during a midnight rollout. | | Testing | Unit tests covered page >= totalPages but integration tests did not simulate the edge case of page = 0 with a non‑zero totalPages . | | Monitoring | Existing alert only monitored 5xx errors; we missed the subtle “empty page → client error” pattern. |
Accessing or distributing certain types of content may have legal consequences. It's vital to be aware of the laws in your jurisdiction regarding digital content. EBOD-917