security-audit

Comprehensive security auditing covering code review, vulnerability assessment, OWASP Top 10, dependency analysis, and remediation planning.

Safety Notice

This listing is imported from skills.sh public index metadata. Review upstream SKILL.md and repository scripts before running.

Copy this and send it to your AI assistant to learn

Install skill "security-audit" with this command: npx skills add 89jobrien/steve/89jobrien-steve-security-audit

Security Audit Skill

Comprehensive security auditing covering code review, vulnerability assessment, OWASP Top 10, dependency analysis, and remediation planning.

What This Skill Does

  • Conducts security code reviews

  • Identifies vulnerabilities (CVSS scoring)

  • Performs OWASP Top 10 assessments

  • Audits authentication/authorization

  • Reviews data protection controls

  • Analyzes dependency vulnerabilities

  • Creates remediation roadmaps

When to Use

  • Security reviews before release

  • Compliance audits

  • Penetration test preparation

  • Incident response analysis

  • Dependency vulnerability assessment

Reference Files

  • references/SECURITY_AUDIT.template.md

  • Comprehensive security audit report format

  • references/owasp_checklist.md

  • OWASP Top 10 checklist with CVSS scoring and CWE references

Workflow

  • Define scope and methodology

  • Perform static/dynamic analysis

  • Document findings by severity

  • Map to OWASP categories

  • Create remediation roadmap

  • Verify fixes

Output Format

Security findings should include:

  • Severity (Critical/High/Medium/Low)

  • CVSS score and vector

  • CWE classification

  • Proof of concept

  • Remediation steps

Source Transparency

This detail page is rendered from real SKILL.md content. Trust labels are metadata-based hints, not a safety guarantee.

Open in GitHubOpen in ClawHub

Related Skills

Related by shared tags or category signals.

Security

security-engineering

No summary provided by upstream source.

Repository SourceNeeds Review
19-89jobrien
Coding

dead-code-removal

No summary provided by upstream source.

Repository SourceNeeds Review
113-89jobrien
General

meta-cognitive-reasoning

No summary provided by upstream source.

Repository SourceNeeds Review
83-89jobrien
Coding

ai-code-cleanup

No summary provided by upstream source.

Repository SourceNeeds Review
44-89jobrien