Security Module — Skill

Purpose

Audit the repository's security posture and surface actionable findings. Covers Dependabot alerts, code scanning, secret scanning, security advisories, branch protection, and SECURITY.md validation.

Execution Order

Runs as module #1 during full assessments. Security findings have the highest priority and other modules defer to this module for security-related items (Dependabot PRs, SECURITY.md presence).

Helper Commands

# Dependabot vulnerability alerts
gh-manager security dependabot --repo owner/name
gh-manager security dependabot --repo owner/name --severity critical

# Code scanning alerts (CodeQL, third-party)
gh-manager security code-scanning --repo owner/name