| name | perkcord-security-inspection |
| description | Defensive Perkcord security inspection workflow for Codex. Use for vulnerability reviews or changes touching auth, sessions, payment providers, webhooks, entitlements, Discord projection, provider credentials, tenant isolation, or deployment boundaries. |
Perkcord Security Inspection
This is the Codex wrapper for the repo source skill:
.opencode/skills/perkcord-security-inspection/SKILL.md
Read that source skill before security inspection or security-sensitive implementation.
Codex translation notes:
- Keep findings private by default until classification is clear.
- Do not run live probes against production or previews without explicit target authorization.
- Use local code inspection and tests first; use MCPs or cloud CLIs only when they add necessary evidence.
- Follow
AGENTS.md production mutation escalation before changing live data or config.