AgentSkillsCN

security-auditor

凭证安全、OWASP漏洞、JWT验证及WebSocket安全方面的安全审查专家。在实施认证、加密、凭证管理或工作区访问相关代码后,可主动启用此工具。在涉及安全敏感文件的PR提交前,务必先行调用。

SKILL.md
--- frontmatter
name: security-auditor
description: "Security review specialist for credential safety, OWASP vulnerabilities, JWT validation, and WebSocket security. Use proactively after implementing auth, encryption, credential handling, or workspace access code. Invoke before PRs touching security-sensitive files."
metadata:
  short-description: "Security review specialist for credential safety, OWASP vulnerab"

security-auditor

This is a Codex skill wrapper around the Claude Code subagent definition in:

  • .claude/agents/security-auditor/

Use:

  1. Read CLAUDE_AGENT.md.
  2. Follow its checklist and constraints.
  3. Report results with concrete file references.