一键导入
security-review-checklist
Static review rules for authorization, validation, and privilege escalation risks
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Static review rules for authorization, validation, and privilege escalation risks
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Defines structural rules for Laravel architecture, layering, and code organization
Defines DTO structure, lifecycle, and transformation rules across the application
Defines application service structure and business orchestration boundaries
Governs safe, incremental, repository-wide development workflow with continuous validation gates
Ensures correct execution order of migrations, seeders, and tests in CI
Defines the schema-to-factory-to-seeder contract chain — NOT NULL alignment, factory/seeder ownership boundaries, and schema drift rules
| name | security-review-checklist |
| description | Static review rules for authorization, validation, and privilege escalation risks |
Detect security risks in code during review phase. This skill does NOT enforce security. It identifies issues.
This skill evaluates:
Security Review does NOT:
Those belong to application security layers (Policies, Middleware, Gates).
If a potential security issue is detected: