Skip to main content
在 Manus 中运行任何 Skill
一键导入

np-kb-security-review

星标0
分支1
更新时间2026年7月9日 00:25

Methodical source-to-sink security audit for code changes — enumerate sources and sinks, verify escapers/validators still guard every sink, classify trust boundaries (attacker vs operator vs victim), then adversarially refute each candidate finding. Use when reviewing or auditing a diff or codebase for security (XSS/DOM, injection, SSRF, path traversal, credential handling, info disclosure), or when a task says "security review", "audit", "is this safe", or "check for vulnerabilities".

安装

用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。

文件资源管理器
2 个文件
SKILL.md
readonly