원클릭으로
code-auditing
Task-focused project skill.
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
메뉴
Task-focused project skill.
Codex 또는 Claude로 설치 이 Prompt를 복사해 Codex, Claude 또는 다른 어시스턴트에 붙여 넣으면 Skill 페이지를 검토하고 설치를 진행할 수 있습니다.
SOC 직업 분류 기준
Use when performing a cybersecurity audit, security review, OWASP Top 10 compliance check, vulnerability assessment, or preparing for a penetration test on a Node.js/Express/React application.
Run N feature tasks in parallel, each in its own worktree, following the full specboot pipeline (enrich → new → ff → apply → verify). Stops after verify — no archive, no commit, no cleanup. Explicit task arguments override `parallel-tasks.md`; file is fallback only.
Use when the user requests an adversarial review, red-team review, devil's advocate check, or independent verification pass before archiving an OpenSpec change.
Use when the user asks "show me X", "demo X", "walk me through X", "how X works" or requests a live feature demonstration from a spec, feature or ticket.
Use when creating new skills, editing existing skills, or verifying skills work before deployment
Analyze and synchronize agent skill exposure after ai-specs skill changes (additions, removals, renames). Use when skills are added/removed in ai-specs and .claude/skills and .cursor/skills must stay aligned through symlinks.
| name | code-auditing |
| description | Task-focused project skill. |
| version | 1.0.0 |
Comprehensive methodology for systematic code quality audits.
For each file, analyze for:
For every library and framework:
Look for recurring issues:
For custom implementations:
Generate detailed report with:
any typeTools:
npx knip --reporter jsondeadcode . --dryImportant: Always verify tool findings before reporting. Check for:
import(variable))See the reference documents for complete methodologies:
references/audit-methodology.md - Full 6-phase audit process with detailed checklistsreferences/dead-code-methodology.md - Dead code detection tools, verification, and cleanup workflows