This is a comprehensive OWASP Top 10 security auditor built specifically for Laravel 13 with React/Inertia.js stacks. It walks through authentication flaws, SQL injection, XSS vulnerabilities, CSRF gaps, and insecure session configs with concrete Laravel-specific checks like missing $fillable guards, raw SQL bindings, and dangerouslySetInnerHTML abuse. The output format is clean: PASS/FAIL/N/A per checklist item with file and line numbers but no code reproduction. What makes this genuinely useful is the dual-mode design. You can run a full codebase audit or use it as a secure coding reference while building features involving auth, payments, or file uploads. It also catches Inertia-specific data leakage risks that generic security tools miss.
npx skills add https://github.com/asyrafhussin/agent-skills --skill laravel-owasp-security