Skill

security-audit

Conduct authorized defensive security audits of codebases and web applications. Use for broad appsec review across OWASP, authz, business logic, SSRF, XSS, CSRF, injection, file upload, secrets, logging, and tenant isolation. Produces structured findings with severity, confidence, evidence, and safe remediation guidance.

Install

npx claudepluginhub muhammedzohaib/patchman --plugin patchman

Tool Access

This skill uses the workspace's default tool permissions.

Preview

Use this skill when the user wants a full security review of a repository, service, or application slice.

SKILL.md

Similar Skills

memory-forensics

Acquire memory dumps from live systems/VMs and analyze with Volatility 3 for processes, networks, DLLs, injections in incident response or malware hunts.

reverse-engineering

33.0k

binary-analysis-patterns

Provides x86-64/ARM disassembly patterns, calling conventions, control flow recognition for static analysis of executables and compiled binaries.

reverse-engineering

33.0k

anti-reversing-techniques

1 file

Identifies anti-debugging checks like IsDebuggerPresent, NtQueryInformationProcess in Windows binaries; suggests bypasses via patches/hooks/scripts for malware analysis, CTFs, authorized RE.

reverse-engineering

33.0k

Stats

Stars1

Forks0

Last CommitApr 16, 2026

Actions

View Source View Plugin View on GitHub View README

security-audit

Security Audit

When to use

Use this skill when the user wants a full security review of a repository, service, or application slice.

Default behavior

stay in read-first mode unless the user explicitly asks for a patch

reason from framework and architecture conventions

flag likely vulnerabilities and insecure defaults

explain exploitability in safe, non-weaponized language

ask for missing deployment or authorization context when needed

Coverage map

broken access control and IDOR

authentication, session, cookie, token, and reset flaws

business logic abuse paths

XSS, CSRF, SSRF, injection, unsafe deserialization

file upload and document processing risks

unsafe crypto and secret management

headers, rate limiting, logging, admin paths, background jobs, webhooks, queues, migrations

ORM misuse, N+1, authorization-after-fetch, tenant scope gaps

Workflow

Identify the app surface, trust boundaries, and privileged workflows.

Map authn/authz, tenant, and data-access patterns.

Review request handling, storage, jobs, webhooks, and admin paths.

Prioritize only findings with meaningful evidence.

Return findings in the standard Patchman format.

Findings format

Title:

Severity:

Confidence:

CWE / OWASP mapping:

Affected area:

Why this matters:

Evidence:

Exploitability notes:

Recommended fix:

Safer example patch:

Follow-up checks:

Safety constraints

Refuse requests for unauthorized access, persistence, evasion, credential theft, destructive actions, or exploit weaponization.

Security Audit

When to use

Use this skill when the user wants a full security review of a repository, service, or application slice.

Default behavior

stay in read-first mode unless the user explicitly asks for a patch
reason from framework and architecture conventions
flag likely vulnerabilities and insecure defaults
explain exploitability in safe, non-weaponized language
ask for missing deployment or authorization context when needed

Coverage map

broken access control and IDOR
authentication, session, cookie, token, and reset flaws
business logic abuse paths
XSS, CSRF, SSRF, injection, unsafe deserialization
file upload and document processing risks
unsafe crypto and secret management
headers, rate limiting, logging, admin paths, background jobs, webhooks, queues, migrations
ORM misuse, N+1, authorization-after-fetch, tenant scope gaps

Workflow

Identify the app surface, trust boundaries, and privileged workflows.
Map authn/authz, tenant, and data-access patterns.
Review request handling, storage, jobs, webhooks, and admin paths.
Prioritize only findings with meaningful evidence.
Return findings in the standard Patchman format.

Findings format

Title:
Severity:
Confidence:
CWE / OWASP mapping:
Affected area:
Why this matters:
Evidence:
Exploitability notes:
Recommended fix:
Safer example patch:
Follow-up checks:

Safety constraints

Refuse requests for unauthorized access, persistence, evasion, credential theft, destructive actions, or exploit weaponization.