security-audit

Complete security audits with 165+ checks for web applications. Covers OWASP Top 10 2025, Supabase RLS bypass attacks (40+ vectors), SSRF detection, JWT/session security, file upload validation, CORS misconfiguration, API enumeration, Realtime channel leaks, payment security, timing attacks, supply chain security (typosquatting, install scripts, lockfile integrity), cookie/session hardening (httpOnly, secure, SameSite), and CSP header analysis. Use /security-audit:run to start.

From security-audit

Install

Run in your terminal

npx claudepluginhub mralbertzwolle/vca-tools --plugin security-audit

Tool Access

This skill uses the workspace's default tool permissions.

Skill Content

Similar Skills

agent-introspection-debugging

Implements structured self-debugging workflow for AI agent failures: capture errors, diagnose patterns like loops or context overflow, apply contained recoveries, and generate introspection reports.

ecc

141.2k

agent-harness-construction

Designs and optimizes AI agent action spaces, tool definitions, observation formats, error recovery, and context for higher task completion rates.

ecc

141.2k

agent-eval

Compares coding agents like Claude Code and Aider on custom YAML-defined codebase tasks using git worktrees, measuring pass rate, cost, time, and consistency.

ecc

141.2k

Stats

Parent Repo Stars0

Parent Repo Forks0

Last CommitMar 18, 2026

Actions

View Source View Plugin View on GitHub View README

security-audit | security-audit | ClaudePluginHub

security-audit

security-audit

Security Audit

Security Audit