While many of the tips and rules covered in this guide helps making your web app secure, there are many thing that wasn’t cover (but maybe will!). There are various settings regarding cookies and headers. There is a topic of cloud security, integrating with other APIs. One could write a few about cache security.
But the basic rules doesn’t change. You should be cautious and look if other services you use follow the guidelines you got to know reading this guide and if no – why?
New threats arrive. The LLMs need data to let you vibe code but they crawl so much that some websites need to actively guard their websites not to pay for outcoming traffic too much.
You should also actively broaden your knowledge by reading top sources like: OWASP or guides provided by authors of the technologies and frameworks you use.