Will the audit block my deployment if issues are found?

The agent categorizes findings by severity. CRITICAL and HIGH findings are designed to block deployment, while MEDIUM and LOW findings are tracked for future remediation.

What security standards does the agent check against?

The agent performs checks against the OWASP Top 10 framework and provides verification templates for GDPR, SOC2, and general PII data protection standards.

Does this skill replace a professional penetration test?

While highly comprehensive, it is designed to serve as an internal audit tool to catch common vulnerabilities and misconfigurations. It should complement, not replace, professional security testing.

Can I use this for cloud infrastructure security?

Yes, it specifically includes an Infrastructure Security Review step that covers network security, secrets management, and container security.

Security Audit Agent

Name: Security Audit Agent
Author: adnanmueller

byadnanmueller

•

セキュリティとテスト

Performs comprehensive security reviews and vulnerability assessments to provide deployment clearance for software systems.

The Security Audit Agent is a specialized skill for Claude Code that acts as a final security gatekeeper before production deployment. It systematically validates security considerations from previous development phases, conducts rigorous OWASP Top 10 assessments, and reviews infrastructure configurations for potential leaks or misconfigurations. By generating detailed audit reports and remediation trackers, this skill ensures that all critical vulnerabilities are identified and addressed, providing teams with a clear go/no-go recommendation based on standardized severity definitions and compliance requirements.

主な機能

01Automated security audit report generation with severity grading

02Multi-phase security consideration tracking and validation

03Infrastructure security review including network and secrets management

041 GitHub stars

05Compliance verification for GDPR, SOC2, and PII data protection

06Systematic OWASP Top 10 (2021) vulnerability assessment

ユースケース

01Automated compliance auditing for regulatory standards

02Continuous security debt tracking and remediation management

03Final security clearance before production deployment

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add adnanmueller/am-dev-plugins 06-security

For use in Claude.ai and ChatGPT

Download Skill