This runs security audits on Laravel 10/11+ codebases, checking for the usual suspects: mass assignment issues, IDOR vulnerabilities, missing authorization checks, unsafe file uploads, and misconfigurations that leak debug info or expose .env files. It's built around OWASP standards and thinks through actual exploit scenarios rather than just pattern matching. The output is structured with risk levels, exploit descriptions, and refactored examples using Laravel-native fixes. Honestly most useful during code review or before deployment, especially if you're working solo or don't have dedicated security review. It won't catch everything a pentest would, but it's solid for catching the low-hanging fruit that causes breaches.
npx skills add https://github.com/sickn33/antigravity-awesome-skills --skill laravel-security-audit