Security vulnerability scan and OWASP compliance check
/plugin marketplace add akaszubski/autonomous-dev/plugin install autonomous-dev@autonomous-devOptional - specific file or component to scanInvoke the security-auditor agent to scan for vulnerabilities and check OWASP compliance.
Invoke the security-auditor agent with optional focus area from user.
ARGUMENTS: {{ARGUMENTS}}
Use the Task tool to invoke the security-auditor agent with subagent_type="security-auditor" and provide any specific focus from ARGUMENTS (or scan recent changes if no argument provided).
The security-auditor agent will:
Time: 1-2 minutes (vs 20-30 min full pipeline)
/security-scan
/security-scan src/auth/
/security-scan recent authentication changes
The security-auditor provides:
Use /security-scan when you need:
The auditor checks for:
After security scan, you can:
/update-docs if security changes made/security-scan again after fixes| Command | Time | What It Does |
|---|---|---|
/implement | 5-10 min | Code implementation |
/review | 2-3 min | Code quality review |
/security-scan | 1-2 min | Security vulnerability scan (this command) |
/update-docs | 1-2 min | Documentation sync |
/auto-implement | 20-30 min | Full pipeline (research → plan → test → implement → review → security → docs) |
This command invokes the security-auditor agent with:
Part of: Individual agent commands (GitHub #44)
Related: /review, /update-docs, /auto-implement