yao-websecurity-skill

Installation
SKILL.md

Yao Websecurity Skill

Use

Use when the user gives a local path, archive, GitHub repo, staging URL, or owned runtime and wants a defensive website security audit, vulnerability checklist review, scorecard, remediation plan, static review, dynamic review, active validation, or Excel/HTML/Markdown/PDF report.

Do not use for unauthorized targets, exploit development, credential theft, stealth, malware, third-party public-target scanning, or bypass instructions.

Required Reading

  • references/security-audit-method.md
  • references/report-contract.md
  • references/review-modes.md
  • references/vulnerability-ontology.csv
  • references/scanner-registry.md

Workflow

Installs
16
GitHub Stars
1.2K
First Seen
May 18, 2026
yao-websecurity-skill — yaojingang/yao-open-skills