Verifies that git commits correctly address security audit findings without introducing new bugs or regressions.
The Fix Review skill automates the validation of security remediations by performing differential analysis between pre-fix and post-fix commit ranges. It cross-references code changes against security audit reports—supporting formats like PDF, Markdown, and web URLs—to ensure every vulnerability is thoroughly addressed. By detecting security anti-patterns and verifying the logic behind a fix rather than just relying on commit messages or passing tests, it provides a rigorous secondary check during the post-audit phase to prevent regressions.
Key Features
01Cross-references commits with specific security findings (TOB-XXX pattern)
02Generates detailed verification reports with evidence-based status mapping
03937 GitHub stars
04Parses audit reports from PDF, Markdown, JSON, HTML, and web URLs
05Detects security anti-patterns like access control weakening or validation removal
06Performs differential analysis to identify potential bug introduction patterns
Use Cases
01Analyzing commit ranges for regressions before merging security patches
02Verifying that specific vulnerability IDs are fully resolved in a fix branch
03Validating remediation commits after a professional security audit
