From sd0x-dev-flow
Performs OWASP Top 10 security reviews using Codex MCP, supporting iterative review loops with preserved context for code audits.
npx claudepluginhub sd0xdev/sd0x-dev-flow --plugin sd0x-dev-flowThis skill is limited to using the following tools:
Thin entry-point skill — routes to the parent skill for full workflow.
Conducts OWASP Top 10 security audits and dependency vulnerability checks via Codex MCP. Analyzes git changes and security files like auth/password. Outputs findings report and gates merges.
Reviews code, skills, and prompts for security vulnerabilities including OWASP Top 10, prompt injection, business logic flaws, and insecure defaults. Use for PR reviews, module audits, AI skill/prompt reviews, or release prep.
Performs security code review on target repositories using Project CodeGuard core rules and OWASP rules for detected tech stack, generating markdown report with findings, severity, remediations.
Share bugs, ideas, or general feedback.
Thin entry-point skill — routes to the parent skill for full workflow.
This skill delegates to security-review for the full OWASP security review workflow, prompt templates, and audit logic.
See @skills/security-review/SKILL.md
/codex-review-fast)/dep-audit)/codex-test-review)