Security Best Practice on ZK Snarks

I am searching for resources on (security) best practices for ZK Snarks. What I have in mind is something similar to this for Smart Contracts Ethereum Smart Contract Best Practices
List of attacks and vulnerabilities, common mistakes, maybe costs for different operations and so on.
Thank you!