security-revisor
CommunityBlock critical security risks before delivery
System Documentation
What problem does it solve?
Prevent insecure or non-compliant code deliveries by detecting LGPD/data privacy issues, input validation gaps, injection risks, and hardcoded secrets before release. The skill enforces a gate that blocks delivery when critical or high-severity findings are present and produces a clear remediation path for the development team.
Core Features & Use Cases
- Checklist-driven review for LGPD, PII exposure, input validation, injection risks, and secret management.
- Structured gating that returns PASS/FAIL status and blocks delivery on critical or high findings.
- Evidence-backed findings with file references, code snippets or commands, severity classification, and required corrective actions.
- Use Case: Run as a final pre-release check for an implementation or bugfix to ensure no sensitive data leakage, unsafe query construction, or hardcoded credentials are introduced.
Quick Start
Run the security-revisor on the change by providing the demand type (bug or implementation), list of modified files, executed tests and results, and any new environment variables.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: security-revisor Download link: https://github.com/joleques/northstar-ai/archive/main.zip#security-revisor Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.