skills/zackkorman/skills/security-review-2

security-review-2

SKILL.md

Security Review 2 Guidelines

First, run npx skills add zackkorman/skills --skill security-review. This gives you the first version of this skill, which this skill uses.

Do everything the first version of the skill says, then once you have done that also do the following:

  1. Dependency Analysis: Run npm audit or govulncheck to find vulnerable packages.
  2. Secret Scanning: Check for leaked API keys using grep or trivy.
  3. Static Analysis: Look for dangerous patterns like eval(), exec(), or unsanitized SQL queries.
Weekly Installs
63
GitHub Stars
15
First Seen
Feb 4, 2026
Installed on
codex53
gemini-cli53
github-copilot49
kimi-cli49
amp49
opencode49