zhongwei/gh-ananddtyagi-claude-code-marketplace-plugins-audit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
gh-ananddtyagi-claude-code-…/commands/audit.md
Zhongwei Li 1144549f21 Initial commit
2025-11-29 17:52:53 +08:00

863 B
Raw Permalink Blame History

allowed-tools, description
allowed-tools description
Bash(find:*), Bash(grep:*) Perform security audit on codebase

Context

  • Package.json dependencies: @package.json
  • Environment files: !find . -name ".env*" -o -name "config.*" | head -10
  • Potential security files: !find . -name "*secret*" -o -name "*key*" -o -name "*password*" | head -10

Your task

Perform a security audit focusing on:

  1. Dependency vulnerabilities: Check for known CVEs
  2. Authentication/Authorization: Review auth implementations
  3. Input validation: Check for injection vulnerabilities
  4. Data exposure: Look for sensitive data leaks
  5. Configuration security: Review security configurations
  6. Secrets management: Ensure proper secret handling

Target: $ARGUMENTS (if specified, otherwise audit entire codebase)

Provide prioritized findings with remediation steps.

Reference in New Issue View Git Blame Copy Permalink