Learn Skills
EnglishEspañolFrançaisDeutsch简体中文繁體中文日本語한국어
·security-auditor
!

security-auditor

erichowens/some_claude_skills

Security vulnerability scanner and OWASP compliance auditor for codebases. Dependency scanning (npm audit, pip-audit), secret detection (high-entropy strings, API keys), SAST for injection/XSS vulnerabilities, and security posture reports. Activate on 'security audit', 'vulnerability scan', 'OWASP', 'secret detection', 'dependency check', 'CVE', 'security review', 'penetration testing prep'. NOT for runtime WAF configuration (use infrastructure tools), network security/firewalls, or compliance certifications like SOC2/HIPAA (legal/organizational).

erichowens·security·auditor
30Installs·1Trend·@erichowens

Installation

GitHub: erichowens/some_claude_skills
$npx skills add https://github.com/erichowens/some_claude_skills --skill security-auditor

SKILL.md

Comprehensive security scanning for codebases. Identifies vulnerabilities before they become incidents. Focuses on actionable findings with remediation guidance.

| A01 | Broken Access Control | Missing auth checks on routes | | A02 | Cryptographic Failures | Weak algorithms (MD5, SHA1 for passwords) | | A03 | Injection | Unparameterized queries, eval(), innerHTML | | A04 | Insecure Design | Hardcoded credentials, missing rate limits | | A05 | Security Misconfiguration | Debug mode in prod, default credentials |

| A06 | Vulnerable Components | Known CVEs in dependencies | | A07 | Auth Failures | Weak password policies, session issues | | A08 | Integrity Failures | Unsigned updates, untrusted deserialization | | A09 | Logging Failures | Sensitive data in logs, missing audit trails | | A10 | SSRF | Unvalidated URL inputs to fetch/request |

View raw

Facts (cite-ready)

Stable fields and commands for AI/search citations.

Install command
npx skills add https://github.com/erichowens/some_claude_skills --skill security-auditor
Source
erichowens/some_claude_skills
Category
!Security
Verified
First Seen
2026-02-01
Updated
2026-02-18
URL
https://www.learn-skills.dev/en/skills/erichowens/some_claude_skills/security-auditor

Quick answers

What is security-auditor?

Security vulnerability scanner and OWASP compliance auditor for codebases. Dependency scanning (npm audit, pip-audit), secret detection (high-entropy strings, API keys), SAST for injection/XSS vulnerabilities, and security posture reports. Activate on 'security audit', 'vulnerability scan', 'OWASP', 'secret detection', 'dependency check', 'CVE', 'security review', 'penetration testing prep'. NOT for runtime WAF configuration (use infrastructure tools), network security/firewalls, or compliance certifications like SOC2/HIPAA (legal/organizational). Source: erichowens/some_claude_skills.

How do I install security-auditor?

Open your terminal or command line tool (Terminal, iTerm, Windows Terminal, etc.) Copy and run this command: npx skills add https://github.com/erichowens/some_claude_skills --skill security-auditor Once installed, the skill will be automatically configured in your AI coding environment and ready to use in Claude Code or Cursor

Where is the source repository?

https://github.com/erichowens/some_claude_skills

Details

Category
!Security
Source
skills.sh
First Seen
2026-02-01

Related Skills

video-processing-editing
79 Installs
cv-creator
66 Installs
mobile-ux-optimizer
62 Installs
vitest-testing-patterns
59 Installs
pwa-expert
58 Installs
personal-finance-coach
56 Installs