security-audit-pro
CommunityProfessional-grade security auditing for comprehensive code reviews.
Authorils15
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the challenge of ensuring the security of code repositories by conducting a comprehensive audit that includes Static Application Security Testing (SAST), Software Composition Analysis (SCA), container security, Software Bill of Materials (SBOM), Personal Identifiable Information (PII) detection, and compliance with standards like GDPR, LGPD, and HIPAA.
Core Features & Use Cases
- Comprehensive Security Review: Checks for SQL injection, XSS, CSRF, path traversal, command injection, and more.
- Software Composition Analysis: Identifies dependencies with known CVEs and outdated packages.
- Container Security: Validates Dockerfile configurations for non-root users, health checks, secrets, minimal base images, and more.
- SBOM Generation: Generates SBOM for compliance tracking.
- PII Detection: Scans for personal data in code and logs.
- Compliance Checking: Ensures GDPR, LGPD, HIPAA compliance patterns are met.
- Integration with Themis: Applied during code review for thorough security checks.
Quick Start
Run the security-audit-pro skill to audit the 'project-codebase' directory.
Dependency Matrix
Required Modules
pip-auditsafetynpmaudit-cicyclonedx-bomcyclonedx-npm
Components
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-audit-pro Download link: https://github.com/ils15/pantheon/archive/main.zip#security-audit-pro Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.