一键导入
security-audit
Perform a security audit of the codebase. Checks for OWASP Top 10, AI-specific vulnerabilities, dependency issues, and configuration problems.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
菜单
Perform a security audit of the codebase. Checks for OWASP Top 10, AI-specific vulnerabilities, dependency issues, and configuration problems.
用 Codex 或 Claude 帮你安装 复制这段 Prompt,粘贴到 Codex、Claude 或其他助手里,让它检查 Skill 页面并帮你完成安装。
基于 SOC 职业分类
Check license compatibility, data privacy compliance, and AI ethics. Use when adding dependencies, handling user data, or reviewing regulatory requirements.
Deploy the application or manage infrastructure. Handles Docker builds, CI/CD, and deployment workflows.
Design a UI component with specifications for layout, states, interactions, and accessibility. Use when creating new UI components or redesigning existing ones.
Implement a feature or fix a bug following the project's code patterns and conventions. Use when code changes are needed.
Create a structured implementation plan for a feature, refactoring, or multi-step task. Use as the first step in the pipeline before /orchestrate. Produces a plan that the orchestrator can turn into a delegation plan.
Review code changes for quality, security, and adherence to project conventions. Use after making code changes or when reviewing a pull request.
| name | security-audit |
| description | Perform a security audit of the codebase. Checks for OWASP Top 10, AI-specific vulnerabilities, dependency issues, and configuration problems. |
| argument-hint | [scope: 'full', 'dependencies', 'ai-agents', or specific file paths] |
| context | fork |
| agent | security |
| allowed-tools | Bash(pnpm audit*), Bash(grep *), Bash(git *) |
Perform a security audit with the following scope:
$ARGUMENTS
Check for known vulnerabilities in dependencies using the package manager's audit command.
Scan for common vulnerability patterns:
Review AI agent patterns and verify:
Produce a security report with findings classified by severity:
Each finding includes: location, vulnerability, impact, and remediation steps.