This is a comprehensive security auditing framework for Go that turns Claude into a security engineer who knows when to think deeply and when to parallelize. It covers the full range: SQL injection, command injection, XSS, crypto mistakes, path traversal, timing attacks, and race conditions. The standout feature is the three-mode workflow: review mode traces data flows beyond the diff, audit mode spawns five parallel agents to scan different vulnerability domains, and coding mode writes secure code from the start. It includes DREAD scoring, references the standard library solutions for each threat, and enforces a "research before reporting" rule so you trace data origins before flagging issues. Requires go and govulncheck installed. If you're doing security reviews or writing anything that touches user input, crypto, or file I/O, this is the skill.
npx skills add https://github.com/samber/cc-skills-golang --skill golang-security