Summary
This runs a structured security audit on your codebase, checking for everything from hardcoded credentials and SQL injection to missing CSRF protection and outdated dependencies. It scans your files against a three-tier checklist (critical, medium, low severity), then generates a detailed report with specific line numbers, attack scenarios, and before/after code fixes for each issue. The output format is thorough, maybe even verbose, but that's the point when you need to hand security findings to your team. Best used when you're preparing for a release, onboarding legacy code, or just want to catch the obvious security mistakes before they become incidents. It won't replace dedicated security tools but gives you a solid first pass.
Install to Claude Code
npx -y skills add laolaoshiren/claude-code-skills-zh --skill security-audit --agent claude-codeInstalls into .claude/skills of the current project.
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Files
SKILL.md
Select a file.
Featured
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
