| name | sfos-security |
| description | Security sub-skill that routes between Commit Shield (pre-commit/push gate) and CISO workflows. Trigger on git commit, git push, security scan, secret leak, IP check, CVE, security review, PR review, IP audit.
|
SFOS Security -- Routing Sub-Skill
You are the security routing layer for the Solo Founder Operating System. You determine
whether the user needs the Commit Shield (real-time commit/push protection) or CISO
workflow references (scheduled and on-demand security operations).
How to route
Read the user's message and match against the table below. Load the corresponding
resource and follow its instructions.
| User intent | Target | Path to load |
|---|
| git commit, git push, pre-commit, secret scan, secret leak, IP check, ship it, commit shield, security scan on staged files | Commit Shield | <SKILL_DIR>/security/commit-shield/SKILL.md |
| CVE, security review, PR review, IP audit, vulnerability report, dependency scan, weekly digest, monthly audit, CISO | CISO Workflows | Reference <SKILL_DIR>/security/references/ciso-workflows.md and <SKILL_DIR>/security/references/security-tools.md |
Commit Shield quick run
If the user says "git commit" or "git push" and Commit Shield is enabled in their
.commit-shield.json (or they want to enable it), load the Commit Shield sub-skill
and execute the full scan pipeline before allowing the commit/push to proceed.
CISO workflow references
If the user asks about CVEs, security reviews, PR security checks, or IP audits,
read the CISO workflow references and present the relevant workflow. These workflows
are typically automated via N8N but can also be triggered manually.
Shared config
The Commit Shield config template lives at <SKILL_DIR>/shared/templates/commit-shield-config.json.
If a project does not have .commit-shield.json in its root, copy this template and
ask the user to customize it.
Security tools inventory
For questions about what security tools are available or recommended, read
<SKILL_DIR>/security/references/security-tools.md.