Abstract: Systems and methods are disclosed for software security analysis. In certain embodiments, a method may comprise identifying a set of potential security vulnerabilities, comparing the potential vulnerabilities to a catalog identifying elements on a client system, and generating risk mitigation advice based on potential security vulnerabilities matching an element in the catalog. The method may include evaluating a data field of a service request to a third party to determine an expected data type for the field, determining whether the actual data included in the service request matches the expected data type, and quarantining the service request when the actual data does not match the expected data type. The method may comprise operating as a proxy for the service request, including receiving the service request from the client system, evaluating the service request for irregularities, and forwarding the service request to the third party once the irregularities have been addressed.