zhongwei/gh-ananddtyagi-claude-code-marketplace-plugins-audit
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
master
gh-ananddtyagi-claude-code-…/commands/audit.md
Zhongwei Li 1144549f21 Initial commit
2025-11-29 17:52:53 +08:00

25 lines
863 B
Markdown
Raw Permalink Blame History

---
allowed-tools: Bash(find:*), Bash(grep:*)
description: Perform security audit on codebase
---
## Context
- Package.json dependencies: @package.json
- Environment files: !`find . -name ".env*" -o -name "config.*" | head -10`
- Potential security files: !`find . -name "*secret*" -o -name "*key*" -o -name "*password*" | head -10`
## Your task
Perform a security audit focusing on:
1. **Dependency vulnerabilities**: Check for known CVEs
2. **Authentication/Authorization**: Review auth implementations
3. **Input validation**: Check for injection vulnerabilities
4. **Data exposure**: Look for sensitive data leaks
5. **Configuration security**: Review security configurations
6. **Secrets management**: Ensure proper secret handling
Target: $ARGUMENTS (if specified, otherwise audit entire codebase)
Provide prioritized findings with remediation steps.
Reference in New Issue View Git Blame Copy Permalink