Audit [patched]: Sitecore Tech

| Layer | Focus Areas | |-------|--------------| | | Topology (CM/CD/Processing/Reporting), load balancer affinity, session state provider, Solr/Elasticsearch version, CDN configuration, container readiness. | | Code & Customization | Unused or duplicate pipelines, event handlers, custom cache strategies, patch configs, hardcoded IDs, excessive sc:index usage, Helix/Habitat compliance. | | Database & Storage | Web , Master , Core , Analytics size, fragmentation, index maintenance, orphaned items, excessive versions, blob storage vs. filesystem media. | | Security & Compliance | Expired API keys, insecure publishing targets, exposed /sitecore/admin , over-privileged roles, unpatched known CVEs (e.g., CVE-2020-35946). | | Experience Platform (xDB/xConnect) | Collection service health, shard key design, MongoDB/PostgreSQL metrics, tracker enabled/disabled, GDPR consent compliance, interaction table growth. |

| Issue | Impact | Typical Cause | |-------|--------|----------------| | (500+ versions per item) | Publishing time explosion, content editor timeouts | Missing auto-publish or workflow cleanup | | Custom code in App_Code | Security & deployment risk, poor performance | Legacy “quick fixes” | | Solr commitWithin=0 | Near-real-time sync failures | Misconfigured indexing strategies | | Analytics table bloat | Slow reporting, high storage cost | Missing interaction archiving | | Infinite Sitecore.Caching.GeneralCache | Memory pressure → crash | No maxSize setting in cache configs | | Raw HTML in rich text fields | XSS vulnerabilities, broken experience editor | Override of standard sanitization | sitecore tech audit