Security Audit

Overview

This skill provides comprehensive security auditing capabilities to identify vulnerabilities, misconfigurations, and security best practice violations across:

• Application code (OWASP Top 10, injection flaws, authentication issues)
• APIs (REST, GraphQL, gRPC security patterns)
• Infrastructure (cloud configs, IaC, container security)
• Data pipelines (data flow security, PII handling, encryption)
• ML models (adversarial attacks, model poisoning, data leakage)
• Compliance frameworks (SOC2, PCI-DSS, HIPAA, GDPR)

Use this skill for security reviews, vulnerability assessments, penetration testing preparation, risk assessments, and compliance audits.

Instructions

1. Scope Assessment