Security Analysis

Security audit patterns for identifying and remediating vulnerabilities.

Core Specialization

• Vulnerability Management: Dependabot, CodeQL, Trivy, Semgrep
• Secret Management: External Secrets Operator, OpenBao (Vault)
• Auth: OAuth2, JWT, OIDC, BetterAuth
• Crypto: Proper key management, secure algorithms
• Compliance: OWASP Top 10, CIS Benchmarks
• Supply Chain: SBOM, signed images, provenance

Execution Rules