Security Audit Codebase

Perform a systematic security review of a codebase to identify vulnerabilities and exposed secrets.

When to Use

• Before publishing or deploying a project
• Periodic security review of existing projects
• After adding authentication, API integration, or user input handling
• Before open-sourcing a private repository
• Preparing for a security compliance audit

Inputs

• Required: Codebase to audit
• Optional: Specific focus area (secrets, dependencies, injection, auth)
• Optional: Compliance framework (OWASP, ISO 27001, SOC 2)
• Optional: Previous audit findings for comparison