How do you handle a situation where a developer wants to bypass a security check to meet a release deadline?