security-audit-quick

/security-hardening との違い: /security-hardening = 単一脅威の深掘り（脅威モデル→緩和→テスト→ゲート） /security-audit-quick = 既知パターンの網羅的検出（grep で一括スキャン）

| (なし) | リポジトリ全体をスキャン | src/ + supabase/ | | --diff | 変更ファイルのみスキャン | git diff --name-only origin/main...HEAD |

検出: X-E2E-Test / X-Bypass-Rate-Limit ヘッダー参照で isProductionRuntime() ガードなし

High-speed static security scan. Grep-based exhaustive detection of known dangerous patterns (XSS, SQL injection, hard-coded secrets, etc.) and outputs a reproducible workflow in SEVERITY / file:line / why / fix format. Use it when you want to "quickly security-check the entire codebase" or "batch-detect known vulnerability patterns." Unlike security-hardening skills (design-to-implementation for specific threat scenarios) or security-threat-review skills (comprehensive red/blue team assessment), this skill focuses solely on high-speed detection of known patterns. Source: yusuketsunoda/ppt-trans.