sec-review-fixes
CommunityAutomate secure fixes with auditable PRs.
Software Engineering#automation#security#pull-request#regression-test#auditable-workflow#diff-generation
Authortbeack
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Companion to sec-review-team. This Skill orchestrates security findings into deterministic diffs, regression tests, commit messages, and PRs, enabling safe, auditable remediation workflows.
Core Features & Use Cases
- End-to-end fix orchestration for security findings, generating per-finding diffs, tests, and PRs with interactive approval and safeguards.
- Supports multiple modes including default interactive flow,
--dry-run, and--re-verifyto re-check fixes against specific IDs. - Produces structured artifacts under .planning/sec-review-fixes for review and hand-off to execution pipelines.
- Enforces strong safety constraints: branch-only commits, no pushes to main, and clean-working-tree requirements before applying fixes.
Quick Start
Invoke the sec-review-fixes skill on the prepared findings to generate patch proposals, regression tests, and commit messages for review.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: sec-review-fixes Download link: https://github.com/tbeack/fsad_playbook/archive/main.zip#sec-review-fixes Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 510,000+ vetted skills library on demand.