openharmony-security-review

Chosen Report 2 is the strongest baseline due to its explicit focus on OpenHarmony C++ system services, IPC, and shared-state concerns. The improved version adds concrete review artifacts: a structured checklist, sample code-agnostic test cases, and a minimal scoring scheme to operationalize the guidelines during code review. This yields a more actionable, repeatable security review artifact while preserving the original methodology.