WA-VERIFY-106: Audit JSON.load usage (prefer JSON.parse)

## Summary
Audit usage of `JSON.load` (prefer `JSON.parse`).

## Approach
Run:
```bash
rg -n "\\bJSON\\.load\\b" --glob "*.rb"
```
For each call site:
- Replace with `JSON.parse` unless there's a strong, documented need for `JSON.load`
- Ensure any parsing of external/user data uses safe defaults

## Acceptance Criteria
- [ ] No `JSON.load` on untrusted inputs
- [ ] Remaining usage (if any) is explicitly justified
- [ ] Tests pass (default appraisal)

## Verification Plan
- Patch call sites
- Run: `bundle exec rake test` (affected engine(s) or default)

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

WA-VERIFY-106: Audit JSON.load usage (prefer JSON.parse) #1114

Summary

Approach

Acceptance Criteria

Verification Plan

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

WA-VERIFY-106: Audit JSON.load usage (prefer JSON.parse) #1114

Description

Summary

Approach

Acceptance Criteria

Verification Plan

Metadata

Metadata

Assignees

Labels

Type

Fields

Projects

Milestone

Relationships

Development

Issue actions