Skip to main content
在 Manus 中运行任何 Skill
一键导入
GitHub 仓库

patchman

patchman 收录了来自 MuhammedZohaib 的 7 个 skills,并提供仓库级职业覆盖和站内 skill 详情页。

已收集 skills
7
Stars
2
更新
2026-04-16
Forks
0
职业覆盖
2 个职业分类 · 已分类 100%
仓库浏览

这个仓库中的 skills

api-review
信息安全分析师

Review an authorized API surface for access control, mass assignment, schema validation, rate limiting, SSRF, error leakage, webhook verification, and unsafe defaults. Use for REST, GraphQL, RPC, and webhook handlers.

2026-04-16
auth-review
信息安全分析师

Perform a defensive review of authentication and authorization flows in an authorized codebase. Use for login, session, MFA, OAuth, password reset, cookie security, JWT validation, impersonation, privilege checks, and object-level access control.

2026-04-16
business-logic-review
信息安全分析师

Review an authorized application for business-logic vulnerabilities, workflow abuse, approval bypasses, replay conditions, quota circumvention, plan enforcement bugs, and state-transition errors. Use for billing, invites, approvals, refunds, admin actions, and multi-step workflows.

2026-04-16
pr-diff-review
信息安全分析师

Review an authorized pull request diff for security regressions. Use when changes modify trust boundaries, auth logic, data-access scope, file handling, logging, headers, or secrets.

2026-04-16
query-review
软件质量保证分析师与测试员

Review an authorized codebase for ORM misuse, N+1 query patterns, authorization-after-fetch bugs, raw SQL risks, cache key collisions, and missing tenant scopes. Use for data-access layers and security-adjacent performance pitfalls.

2026-04-16
quick-triage
软件质量保证分析师与测试员

Perform a rapid defensive triage on an authorized code area when time is limited. Use to find the most plausible high-impact issues fast, then recommend the next best review target.

2026-04-16
security-audit
信息安全分析师

Conduct authorized defensive security audits of codebases and web applications. Use for broad appsec review across OWASP, authz, business logic, SSRF, XSS, CSRF, injection, file upload, secrets, logging, and tenant isolation. Produces structured findings with severity, confidence, evidence, and safe remediation guidance.

2026-04-16