Summary
This is a specialized security agent for claude-flow v3 that patches three critical CVEs and implements secure-by-default patterns. It migrates SHA-256 password hashing to bcrypt, removes hardcoded credentials, updates vulnerable dependencies, and adds input validation with Zod schemas. The skill orchestrates parallel security tasks using dedicated agents for threat modeling, CVE remediation, and TDD security testing. Worth noting that it includes practical examples for path traversal prevention and safe command execution without shell interpretation. If you're upgrading to v3 or inherited a codebase with known security debt, this gives you a structured framework to fix it systematically rather than piecemeal.
Install to Claude Code
npx -y skills add spencermarx/open-code-review --skill "V3 Security Overhaul" --agent claude-codeInstalls into .claude/skills of the current project.
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →
Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →
Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →
On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →Files
SKILL.md
Select a file.
Featured
An agent that runs the SEO playbooks that move rankings and ships PRs you control.
Get founding access →Connect Claude to +800M contacts, +150M companies. Find & Enrich leads in chat.
Try For Free →Agent, run crypto. Access onchain data & trade routes via 1inch.
Install now →On Capafy, your Skill runs online 24/7 as an agent product, and you get paid every time someone uses it.
Start earning →
