Back to Marketplace
security-audit
Audit codebases and infrastructure for security issues, including dependency vulnerabilities, hardcoded secrets, OWASP top 10 issues, and more.
4,870downloads20installs20stars
v1.0.0
cmdopSecurityaudit, CSRF, file permissions, injection, owasp, security, SSL/TLS, top 10, vulnerability, xss3/2/2026
Overview
The security-audit skill is designed to help developers identify and fix security issues in their codebases and infrastructure. It covers a wide range of security concerns, including dependency vulnerabilities, hardcoded secrets, OWASP top 10 issues, and more.
Key Features
- Scans dependencies for known vulnerabilities
- Detects hardcoded secrets, API keys, and credentials in source code
- Reviews code for OWASP top 10 vulnerabilities (injection, XSS, CSRF, etc.)
- Verifies SSL/TLS configuration for endpoints
- Audits file and directory permissions
- Checks authentication and authorization patterns
How It Works
The skill uses a combination of built-in tools and external libraries to scan and detect security issues. It provides detailed instructions for each step of the process, including how to use the tools, interpret the results, and fix any identified issues.
Use Cases
- Scanning project dependencies for known vulnerabilities
- Detecting hardcoded secrets, API keys, or credentials in source code
- Reviewing code for OWASP top 10 vulnerabilities (injection, XSS, CSRF, etc.)
- Verifying SSL/TLS configuration for endpoints
- Auditing file and directory permissions
- Checking authentication and authorization patterns
Category
security
Reviews
No reviews yet.