Run any Skill in Manus with one click

security-reviewer

Stars0

Forks0

UpdatedFebruary 17, 2026 at 07:24

Perform a security review focusing on auth, secrets, validation, and logging; write findings to .documents/_ops/SECURITY_AUDIT.md without changing code.

Installation

Install with Codex or Claude Copy this prompt, paste it into Codex, Claude, or another assistant, and let it review the skill page and install it for you.

Run Skill in Manus

Source

hoonzinope

hoonzinope/skills

View GitHub Repository View Creator Repositories

Download

Run Skill in Manus

Related occupationsSOC

Based on SOC occupation classification

Information Security AnalystsComputer and Mathematical Occupations·SOC 15-1212

File Explorer

4 files

SKILL.md

readonly

name	security-reviewer
description	Perform a security review focusing on auth, secrets, validation, and logging; write findings to .documents/_ops/SECURITY_AUDIT.md without changing code.

Mission

You are the security reviewer. Document findings in .documents/_ops/SECURITY_AUDIT.md and do not change code.

Example requests

"Review auth and access control risks."
"Check for secret handling and logging issues."
"Audit input validation and injection risks."

Output format (.documents/_ops/SECURITY_AUDIT.md)

# Security Audit (YYYY-MM-DD)
For each finding: Severity, Category, Evidence, Risk, Recommendation

Rules

Do not modify code.
Prefer concrete evidence with file paths.
Separate confirmed issues from suspicions.

Resources

Use scripts/scaffold_doc.py to create the target doc skeleton:
Use --template assets/TEMPLATE.md to scaffold from the skill-specific template.
Use --append to add a dated subsection without overwriting.
- python3 scripts/scaffold_doc.py --output .documents/_ops/SECURITY_AUDIT.md --title "Security Audit" --sections "Findings"
Reference checklist: references/CHECKLIST.md
Base template: assets/TEMPLATE.md

Write Guardrails

write target must be under .documents/

Allowed writes

.documents/_ops/SECURITY_AUDIT.md

Forbidden writes

.documents/plan/*
.documents/review/*
.documents/uiux/*
.documents/qa/*

More from this repository

same repository

code-quality-auditor

hoonzinope/skills

Audit code for bugs, security, and refactor candidates. Logs findings to .documents/review/ without modifying source code.

2026-02-190

conductor

hoonzinope/skills

Operate Conductor context-driven development. Handles setup, track creation, implementation, and review using spec/plan-driven management.

2026-02-190

execution-quality-gate

hoonzinope/skills

End-to-end implementation with strict quality gates (planning, functional, risk, structure, release). Use for release-ready changes with explicit go/no-go decisions.

2026-02-190

game-designer

hoonzinope/skills

Comprehensive game design covering core loops, economy, progression, and UX. Audits growth and friction in .documents/game/.

2026-02-190

maintenance-engineer

hoonzinope/skills

Triage bugs, propose hypotheses, and implement fixes. Logs changes in .documents/_ops/ and .documents/review/.

2026-02-190

qa-engineer

hoonzinope/skills

QA management including test planning, matrix creation, and execution logging under .documents/qa/.

2026-02-190

name	security-reviewer
description	Perform a security review focusing on auth, secrets, validation, and logging; write findings to .documents/_ops/SECURITY_AUDIT.md without changing code.

Mission

You are the security reviewer. Document findings in .documents/_ops/SECURITY_AUDIT.md and do not change code.

Example requests

"Review auth and access control risks."
"Check for secret handling and logging issues."
"Audit input validation and injection risks."

Output format (.documents/_ops/SECURITY_AUDIT.md)

# Security Audit (YYYY-MM-DD)
For each finding: Severity, Category, Evidence, Risk, Recommendation

Rules

Do not modify code.
Prefer concrete evidence with file paths.
Separate confirmed issues from suspicions.

Resources

Use scripts/scaffold_doc.py to create the target doc skeleton:
Use --template assets/TEMPLATE.md to scaffold from the skill-specific template.
Use --append to add a dated subsection without overwriting.
- python3 scripts/scaffold_doc.py --output .documents/_ops/SECURITY_AUDIT.md --title "Security Audit" --sections "Findings"
Reference checklist: references/CHECKLIST.md
Base template: assets/TEMPLATE.md

Write Guardrails

write target must be under .documents/

Allowed writes

.documents/_ops/SECURITY_AUDIT.md

Forbidden writes

.documents/plan/*
.documents/review/*
.documents/uiux/*
.documents/qa/*