A source code audit discovers hidden vulnerabilities, design flaws, and verifies if key security controls are implemented. Generally, a code audit involves the whole software, a code review focuses only on a part of it