Initial commit

commands/security-scan.md

@@ -0,0 +1,18 @@
+---
+description: Comprehensive security audit and vulnerability assessment
+allowed-tools: Read(*), Grep(*), Glob(*), Bash(*)
+---
+
+Have the security-auditor agent perform a comprehensive security audit of $ARGUMENTS.
+
+Security checklist:
+1. OWASP Top 10 compliance
+2. Authentication and authorization review
+3. Input validation and sanitization
+4. Secrets management (no hardcoded credentials)
+5. Dependency vulnerability scan
+6. SQL injection prevention
+7. XSS protection
+8. Compliance requirements (SOC2, GDPR, HIPAA)
+
+Run security scanning tools and provide detailed remediation guidance.