بنقرة واحدة
security-audit
Security review checklist for code and infrastructure
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
القائمة
Security review checklist for code and infrastructure
التثبيت باستخدام Codex أو Claude انسخ هذا Prompt والصقه في Codex أو Claude أو مساعد آخر ليراجع صفحة Skill ويثبّتها لك.
استنادا إلى تصنيف SOC المهني
Review code quality, patterns, and best practices
Design MCP tools and gateway interfaces for the dotcontext server
Systematic bug investigation and root cause analysis
Generate commit messages following conventional commits with scope detection
Generate and update technical documentation
Break down features into implementable tasks
| type | skill |
| name | Security Audit |
| description | Security review checklist for code and infrastructure |
| skillSlug | security-audit |
| phases | ["R","V"] |
| generated | "2026-03-18T00:00:00.000Z" |
| status | filled |
| scaffoldVersion | 2.0.0 |
Security review checklist specific to the @dotcontext/cli CLI tool and MCP server.
The @dotcontext/cli tool has a specific threat surface:
| Asset | Risk | Location |
|---|---|---|
| AI provider API keys | Exposure via logs, config files, or provider helpers | src/services/ai/providerFactory.ts, env vars |
| File system access | Path traversal, reading outside repo boundaries | src/services/mcp/gateway/explore.ts, readFileTool.ts |
| MCP server stdio | Command injection via tool parameters | src/services/mcp/mcpServer.ts |
| Generated scaffold content | Inclusion of secrets in .context/ output | src/services/ai/tools/, src/services/autoFill/, src/generators/ |
| User repository content | Unintended exposure via exported context | src/services/export/, src/services/sync/ |
| Dependencies | Supply chain vulnerabilities | package.json |
src/services/ai/providerFactory.ts helpers.context/ outputsrc/utils/contentSanitizer.ts) strips potential secrets from generated content.env files are in .gitignorepath.resolve() before access../ sequences that escape the repo rootreadFileTool.ts validates paths are within the project boundaryread action bounds access to the repo pathlist and search actions respect exclude patterns.context/ by default)repoPath parameter is resolved and optionally cached, not used rawprocess.stderr, not process.stdout (which is the MCP transport)wrapWithActionLogging does not log sensitive parameter valuesThe contentSanitizer.ts utility filters generated content:
npm audit shows no high/critical vulnerabilitiestree-sitter and tree-sitter-typescript are optional dependencies (native binaries)@ai-sdk/anthropic, @ai-sdk/openai, @ai-sdk/google) are from official sources@modelcontextprotocol/sdk is from the official MCP organizationaxios usage (if any) validates URLs and does not follow arbitrary redirectsexportRules and exportContext actions do not include API keys in outputreverseSync validates imported file content before writing to .context/dryRun: true) never writes filesgitService.ts does not expose credentialscommitPhase action stages only files matching the provided patterns[".context/**"] -- not ["**"]/[A-Za-z0-9]{32,}/, /sk-[a-zA-Z0-9]+/, /AKIA[A-Z0-9]{16}/path.resolve() or path.join()console.log() in MCP server code pathsnpm audit and address any high/critical findingssrc/services/mcp/gateway/ for input validationsrc/utils/contentSanitizer.ts for completeness of sanitization patternssrc/services/ai/providerFactory.ts and any prompt/default helpers for key handling.gitignore includes .env, *.pem, credentials*.context/ does not contain repo-external pathssrc/services/ai/tools/ for file access boundariesIf a security issue is found:
contentSanitizer.ts if the issue involves generated content### Security