Start
security-auditor
security-auditor - Skill Dossier
security-auditor

security-auditor

Security vulnerability scanner and OWASP compliance auditor for codebases. Dependency scanning (npm audit, pip-audit), secret detection (high-entropy strings, API keys), SAST for injection/XSS vulnerabilities, and security posture reports. Activate on 'security audit', 'vulnerability scan', 'OWASP', 'secret detection', 'dependency check', 'CVE', 'security review', 'penetration testing prep'. NOT for runtime WAF configuration (use infrastructure tools), network security/firewalls, or compliance certifications like SOC2/HIPAA (legal/organizational).

Security
#security-audit#vulnerability#penetration-testing#code-review#compliance

Allowed Tools

ReadWriteEditBash(npm audit:*pip-audit:*grep:*find:*)GrepGlob

Share this skill

TwitterLinkedIn

Skills use the open SKILL.md standard — the same file works across all platforms.

Install all 463+ skills as a plugin
claude plugin marketplace add curiositech/windags-skills claude plugin install windags-skills

Claude activates security-auditor automatically when your task matches its description.

View on GitHub
"Use security-auditor to help me build a security-audit system"
"I need expert help with security vulnerability scanner and owasp complianc..."
"Orchestrate security-auditor with devops-automator for secure deployment pipelines"