Skills

code-security-audit

Installation
SKILL.md

Code Security Audit Capabilities

OWASP 4-source integrated code security audit system for universal codebase analysis.

Knowledge Sources

  • OWASP ASVS 5.0.0: 345 verification requirements across 17 security domains (L1/L2/L3)
  • OWASP API Security Top 10 2023: 10 API-specific risk categories with code-level indicators
  • OWASP CheatSheet Series: 109 practical secure coding cheat sheets for remediation guidance
  • OWASP WSTG (Web Security Testing Guide): 12 testing categories with 120+ test scenarios

Source Roles

Source Role Usage
ASVS 5.0.0 Verification requirements baseline Defines what to check — structured requirements per domain
API Security Top 10 2023 Risk taxonomy Defines what to look for — API-specific threat patterns
CheatSheet Series Implementation guidance Defines how to fix — secure coding patterns and practices
WSTG Test methodology Defines how to verify — concrete test scenarios per vulnerability
Related skills

More from buyoung/skills

Installs
1
Repository
buyoung/skills
GitHub Stars
13
First Seen
Mar 18, 2026
Security Audits
Gen Agent Trust HubPass
SocketPass
SnykPass