security-audit

Category: Testing & Security | Uploader: zenHeart | Downloads: 0 | Version: v1.0（Latest）

Run a security audit on the codebase. Scan the dependency tree and report CVE vulnerabilities. Use when the user asks for a security scan or dependency audit.

Changelog: Source: GitHub https://github.com/zenHeart/learn-ai

Directory Structure

Current level: ppts/vibe-coding/examples/.cursor/skills/security-audit/

📄 SKILL.md 943 B

SKILL.md

---
name: security-audit
description: Run a security audit on the codebase. Scan the dependency tree and report CVE vulnerabilities. Use when the user asks for a security scan or dependency audit.
---

# Security Audit

## When to Use

- Use when the user asks for a security audit, dependency check, or CVE scan
- Use when preparing for release or compliance review

## Instructions

1. **Dependency audit**
   - Inspect `package.json` (and lockfiles) for direct and transitive dependencies
   - Check for known vulnerabilities (e.g. via `npm audit` or similar)
   - Report findings: package name, severity, and recommendation

2. **Code security**
   - Review code for common issues: hardcoded secrets, unsafe eval, path traversal, injection
   - Note any authentication/authorization or data-handling concerns

3. **Report**
   - Summarize findings with severity
   - Suggest updates or mitigations; do not modify code unless the user asks

Comments 0

Latest | Hot

Please login before commenting.

No comments yet. Be the first one!

security-audit

Directory Structure

SKILL.md

Report

Notice