一键导入
security-review
Reviews application code for security vulnerabilities, unsafe data handling, secret exposure, and risky defaults before merge or release.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Reviews application code for security vulnerabilities, unsafe data handling, secret exposure, and risky defaults before merge or release.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Creates or reviews API documentation for endpoints, SDKs, schemas, examples, errors, authentication, and compatibility behavior.
Diagnoses CI/CD failures from logs and workflow files, identifies likely root cause, and recommends minimal fixes or retry guidance.
Reviews code changes for quality, correctness, style, and potential issues.
Audits dependency files and package changes for vulnerable packages, risky upgrades, license concerns, and supply-chain exposure.
Reviews Dockerfiles and container configuration for security, reproducibility, image size, runtime permissions, and deployment reliability.
Plans safe framework, library, API, database, or architecture migrations with phased rollout, compatibility checks, and rollback strategy.
| name | security-review |
| display_name | Security Review |
| description | Reviews application code for security vulnerabilities, unsafe data handling, secret exposure, and risky defaults before merge or release. |
| category | code-quality |
| version | 1.0.0 |
| tags | ["security","review","vulnerabilities","secrets","compliance"] |
| providers | ["claude-code","codex","copilot","openclaw","hermes-agent"] |
| author | agent-skills contributors |
Use this skill when reviewing code, diffs, pull requests, configuration, or deployment changes for security risk.
Return: