review-security
CommunityAutomate security code reviews, protect your project from vulnerabilities.
System Documentation
What problem does it solve?
This Skill addresses the critical need for thorough security code reviews, helping identify common vulnerabilities like SQL injection, XSS, and hardcoded credentials that are often missed in manual reviews. It automates the process of scanning code for security flaws, providing actionable insights to protect your project from potential attacks and ensure compliance.
Core Features & Use Cases
- Targeted Code Scanning: Reviews changed files, specific directories, or the entire project for security flaws based on OWASP Top 10. Use it as part of your pull request review process or for periodic security audits.
- Vulnerability Detection: Automatically identifies critical issues such as hardcoded credentials, potential SQL/XSS injection points, sensitive data being logged, and missing authentication/authorization checks. This helps proactively secure your codebase.
- Actionable Remediation: Provides clear, severity-ranked reports (Critical, High, Medium, Low) with concrete suggestions for fixing identified security issues, including code examples. Use it to guide developers in implementing secure coding practices.
Quick Start
Review the security of the recently changed files in my project, focusing on potential SQL injection and hardcoded credentials.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: review-security Download link: https://github.com/ssiumha/dots/archive/main.zip#review-security Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.