/security-audit

Description

Comprehensive security scanning including dependency vulnerabilities, secret detection, OWASP Top 10 analysis, and configuration checks

Install

Add the repository(one-time)

/plugin marketplace add MartyBonacci/specswarm

Install the plugin

/plugin install martybonacci-specswarm@MartyBonacci/specswarm

Prompt Preview

## Goal

Perform a comprehensive security audit of your codebase to identify vulnerabilities before merging or releasing.

## User Input



---

## What This Command Does

`/specswarm:security-audit` performs a comprehensive security analysis of your codebase:

1. **Dependency Scanning** - Checks for known vulnerabilities in npm/yarn/pnpm packages
2. **Secret Detection** - Scans for hardcoded API keys, passwords, tokens, and credentials
3. **OWASP Top 10 Analysis** - Detects common web vulnerabilities (XSS, SQL injection, etc.)
4. **Security Configuration** - Validates HTTPS, CORS, headers,...

Other plugins with /security-audit

orchestr8

Security vulnerability assessment covering authentication, authorization, input validation, and infrastructure

ring-ops-team

Execute infrastructure security audit workflow with compliance validation

security

Perform comprehensive security audit of the codebase

workflow-suite

Perform comprehensive security assessment: $ARGUMENTS

ai-security

Comprehensive security audit to identify vulnerabilities, OWASP Top 10 issues, and security anti-patterns.