// Run a comprehensive security audit on the current project. Scans for secrets, vulnerabilities, dangerous configs, and risky patterns. Use at the end of each sprint or before releases.
| name | security-audit |
| description | Run a comprehensive security audit on the current project. Scans for secrets, vulnerabilities, dangerous configs, and risky patterns. Use at the end of each sprint or before releases. |
| disable-model-invocation | true |
Run a comprehensive security audit on the current project.
Run the StoryForge security scanner:
python scripts/security_audit.py . --report
This will:
.kanban/security-reports/For a complete audit, delegate to the security-auditor agent which will:
| Exit Code | Meaning |
|---|---|
| 0 | No critical or high issues |
| 1 | Critical or high issues found (requires action) |
| 2 | Script error |
.kanban/security-reports//story-write.kanban/changelog.md with audit resultsDisplay the StoryForge Kanban dashboard showing board status, features, active stories, sprint progress, and recent activity. Use to get a quick overview of project delivery state.
Update StoryForge delivery artifacts after work is completed. Updates story status, board, changelog, and captures follow-ups. Use after completing implementation work.
Plan or review a sprint by selecting Stories from Ready state into the sprint backlog. Use for sprint planning or mid-sprint reviews.
Create a new Story with structured fields including acceptance criteria, non-goals, risks, and follow-ups. Use when a new piece of work needs to be planned before implementation.
Link a StoryForge story to a GitHub Issue or Pull Request. Updates the story's GitHub field and optionally adds a comment on the GitHub issue. Use when starting work that relates to a GitHub issue.
Initialize a project with StoryForge Kanban delivery structure. Creates .kanban/ directory with board, backlog, sprint, decisions, changelog, and stories directory. Use when setting up a new project for StoryForge delivery tracking.