/security

From backend-security

Description

Application security with OWASP best practices and threat modeling

Argument

<concern> [focus]

Model

claude-sonnet-4-0

Allowed Tools

TaskBashReadWrite

Prompt Preview

# Security Command

Application security with OWASP best practices and threat modeling

## Purpose

Comprehensive security review and hardening for applications, APIs, infrastructure, and automation scripts. Identifies vulnerabilities, recommends mitigations, and ensures security best practices are followed.

## SECURITY FOCUS AREAS

This command helps you identify and fix security issues across:

### Input Validation & Injection Prevention
- SQL injection vulnerabilities
- Command injection risks
- LDAP/XPath/XML injection
- Path traversal attacks
- Input sanitization gaps

### Authenticat...

Other plugins with /security

10x-fullstack-engineer

Performs a comprehensive security audit focusing on authentication, authorization, input validation, data protection, and OWASP Top 10 vulnerabilities.

review

Complete a security review with optional custom output path

popkit

scan | list | fix | report [--dry-run, --severity, --fix]

security

Security plugin entry point - shows available security commands and quick status

dapr

Scan DAPR project for security vulnerabilities, plain-text secrets, missing ACLs, and configuration issues

Links

GitHub Stats

1 forks

Updated 15 days ago