1 - Audit

Audit is an external security assessment of a project codebase, typically requested and paid-for by the project team

It detects and describes (in a report) security issues with underlying vulnerabilities, severity/difficulty, potential exploit scenarios and recommended fixes.
It also provides subjective insights into code quality, documentation and testing.
The scope/depth/format of audit reports varies across auditing teams but they generally cover similar aspects.

Slide Screenshot