Condition Injection - Why addEncodedQuery Can't Safely Filter User Input
How user input concatenated into addEncodedQuery() can silently bypass your filters — one ^NQ rewrites the whole query — proven with a live 72-versus-0 row count.
Server-Side Scripting
CodeSpy - A Server-Side Script Profiler for ServiceNow
Profile server-side scripts to capture call trees and execution times, so you can find and fix the real bottleneck instead of guessing.