Developed and delivered two security-focused features to enhance OAuth scope management within the wso2-extensions/identity-inbound-auth-oauth and wso2/carbon-identity-framework repositories. The work centered on automating and standardizing default OAuth scopes, allowing administrators to configure default scopes via Jinja2 templates and ensuring these are automatically included in authorization requests when clients omit them. This approach improved the security posture and streamlined onboarding for new OAuth clients by reducing manual configuration and ensuring consistent user consent experiences. Leveraged Java for backend extension development and applied skills in API security, configuration management, and OAuth 2.0 protocols to achieve robust, maintainable solutions.