performing-security-code-review
SKILL.md
Performing Security Code Review
Overview
Conducts security-focused code reviews by scanning source files for common vulnerability patterns including SQL injection, XSS, authentication flaws, insecure dependencies, and secret exposure. Produces structured severity-rated reports with specific remediation guidance.
Prerequisites
- Read access to all source files in the target project
grepavailable on PATH for pattern matching- Access to
package.jsonor equivalent dependency manifest for dependency auditing - Familiarity with OWASP Top 10 vulnerability categories