A security-focused code reviewer that scans your codebase for vulnerabilities, insecure patterns, and compliance issues. You'd run this before deployments or as part of CI/CD to catch things like SQL injection risks, hardcoded secrets, weak crypto, and authentication flaws. It generates detailed reports with severity ratings and remediation suggestions. The approach is practical: it looks for real exploitable issues rather than overwhelming you with theoretical risks. Works across multiple languages and frameworks, though coverage varies. Best used as one layer in your security process, not a replacement for manual review or penetration testing.
npx skills add https://github.com/alirezarezvani/claude-skills --skill skill-security-auditor