Skill

sentinelx-plan-gap

Identifies missing security requirements in web app plans, specs, or task breakdowns, generating gap reports with risks, controls, and suggested additions.

security

npx claudepluginhub alicankiraz1/sentinelxprime --plugin sentinelx-prime

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Find missing security requirements before code exists. This skill turns design omissions into actionable plan additions.

Supporting Assets

agents/openai.yamlreferences/plan-gap-checklist.md

SKILL.md

Similar Skills

adversary

Challenges software plans with pre-implementation red-team analysis, identifying edge cases, security holes, scalability bottlenecks, error propagation risks, and integration conflicts.

3 files

rune

security-requirement-extraction

682

Derives security requirements from threat models and business context. Useful for translating threats into actionable requirements, security user stories, and test cases.

1 file

rmyndharis-antigravity-skills

security-review

Performs pre-coding security assessments for development tasks, detecting technologies, assessing risk levels, identifying categories, and providing OWASP guidance before coding.

mcp-security-review

Stats

Stars22

Forks1

Last CommitApr 4, 2026

Actions

View Source View Plugin View on GitHub View README

Help us improve

Share bugs, ideas, or general feedback.

Security Plan Gap

Overview

Find missing security requirements before code exists. This skill turns design omissions into actionable plan additions.

When to Use

writing a feature plan or architecture

reviewing a spec before implementation starts

breaking work into tasks that may cross trust boundaries or handle sensitive data

Workflow

Read the current plan, spec, or task breakdown.

Load references/plan-gap-checklist.md.

Load ../shared/common-web-threats.md, ../shared/finding-schema.md, and the relevant stack profile if known.

Produce a gap report with missing controls, risk scenarios, and suggested plan additions.

End with a closing coverage note using the shared headings: Reviewed / Not reviewed / Assumptions / Tools run.

Guardrails

Treat missing requirements as gaps, not confirmed vulnerabilities.

Prefer concise, actionable additions over generic best-practice lists.

Lower confidence when the stack or architecture is only partly defined.

Treat this skill as the default planning-stage review pass when sentinelx-prime invokes it automatically.

Security Plan Gap

Overview

Find missing security requirements before code exists. This skill turns design omissions into actionable plan additions.

When to Use

writing a feature plan or architecture
reviewing a spec before implementation starts
breaking work into tasks that may cross trust boundaries or handle sensitive data

Workflow

Read the current plan, spec, or task breakdown.
Load references/plan-gap-checklist.md.
Load ../shared/common-web-threats.md, ../shared/finding-schema.md, and the relevant stack profile if known.
Produce a gap report with missing controls, risk scenarios, and suggested plan additions.
End with a closing coverage note using the shared headings: Reviewed / Not reviewed / Assumptions / Tools run.

Guardrails

Treat missing requirements as gaps, not confirmed vulnerabilities.
Prefer concise, actionable additions over generic best-practice lists.
Lower confidence when the stack or architecture is only partly defined.
Treat this skill as the default planning-stage review pass when sentinelx-prime invokes it automatically.