Skills
.Work. You
Rest

security-review-v4

Community

Automate OWASP PR security reviews.

Software Engineering#security#owasp#infrastructure#risk-assessment#pull-request#pr-review
Authordrdatarulz
Version1.0.0
Installs0

System Documentation

What problem does it solve?

This skill performs an OWASP Top 10 security review for pull requests, incorporating infrastructure context to minimize false positives. It posts findings as PR review comments or approves.

Core Features & Use Cases

  • Framework-aware analysis with attack vector requirements to align findings with project context.
  • Infrastructure-aware checks that trigger when infrastructure files are present (e.g., Bicep, Dockerfile, GitHub Actions workflows).
  • Loading security baselines from standards and architecture to guide triage and suppression.
  • Actionable findings include attack vectors, confidence levels, and remediation steps, posted as PR comments or approval decisions.
  • Use Case: For PRs introducing authentication changes, infrastructure changes, or data flows, automatically surface critical risks and suggested mitigations.

Quick Start

Provide the PR number to start the security review flow.

Dependency Matrix

Required Modules

None required

Components

Standard package

💻 Claude Code Installation

Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.

Please help me install this Skill:
Name: security-review-v4
Download link: https://github.com/drdatarulz/TheL10inator/archive/main.zip#security-review-v4

Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
View Source Repository

Agent Skills Search Helper

Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.