Automated security audit and remediation skill for vibe-coded apps. Use this skill whenever a user wants to check, audit, harden, or secure their app before shipping — even if they don't use the word "security". Trigger phrases include: "check my app before I launch", "make my app production-ready", "is my app safe to ship?", "run a security check", "harden my codebase", "vibe security audit", "security scan my project", or "I'm about to deploy, what should I check?". Also trigger proactively when a user mentions they built their app with AI (Cursor, Lovable, Bolt, Claude Code, etc.) and are preparing to launch or share it publicly. This skill scans the codebase, detects which security domains are present, runs only the relevant checks, auto-fixes vulnerabilities directly in the code, and produces a clean security report — all without requiring any configuration from the user.
2026-04-11