Adoption

Agent Skills are supported by leading AI development tools.

VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory VS Code Gemini CLI GitHub Goose Amp Cursor Claude Code Letta OpenCode Claude OpenAI Codex Factory

aconfusedboi/security-audit

Name: security-audit
Author: aconfusedboi

.claude/skills/security-audit/SKILL.md

npx skillsauth add aconfusedboi/ogie security-audit

Clean

TrivyContainer and dependency vulnerability scanner

Clean

SemgrepStatic code analysis for vulnerabilities

Clean

mcp-scan (Snyk)Model Context Protocol security validation

Skipped

Snyk (dep)Open source security scanning

Skipped

Socket.devSupply chain security analysis

Skipped

VirusTotalMulti-engine malware detection

Skipped

CrowdStrikeAdvanced threat intelligence

Skipped

OSV-ScannerOpen Source Vulnerability database check

Skipped

OWASP Dep-Check

Security Audit Skill

Trigger Phrases

This skill is automatically triggered when the user:

Asks to "audit security" or "check for vulnerabilities"
Requests security review or assessment
Wants to "scan for security issues"
Mentions "security audit", "penetration test", or "vulnerability scan"
Asks about security best practices

Delegation Instructions

When this skill is triggered:

Delegate immediately to the security-reviewer agent
Specify code or components to audit
Include security focus areas if mentioned
Provide context about sensitive data
Include any compliance requirements

Context to Pass

Code to Audit: Files or components to review
Security Focus: Specific areas (auth, input validation, etc.)
Sensitive Data: Types of sensitive data handled
Compliance: Any compliance requirements (GDPR, HIPAA, etc.)
Threat Model: Known threats or attack vectors
Current Issues: Any known security concerns

Agent Responsibilities

The security-reviewer agent will:

Analyze code for security vulnerabilities
Check authentication and authorization
Review input validation
Identify security risks
Provide security recommendations
Prioritize issues by severity

Usage Examples

Example 1: Code Security Audit

User: "Audit the authentication code for security vulnerabilities"

Delegation: Delegate to security-reviewer with:

Code: Authentication implementation
Focus: Auth security
Context: User authentication flow

Example 2: Pre-Deployment Check

User: "Check the codebase for security issues before deployment"

Delegation: Delegate to security-reviewer with:

Scope: Full codebase
Focus: Critical vulnerabilities
Context: Production deployment

Example 3: Specific Vulnerability

User: "Check if we're vulnerable to SQL injection"

Delegation: Delegate to security-reviewer with:

Focus: SQL injection
Code: Database queries
Context: Database access patterns

Best Practices

Delegate security reviews to security-reviewer
Specify security focus areas
Include compliance requirements
Provide sensitive data context
Request prioritized findings

aconfusedboi/security-audit

.claude/skills/security-audit/SKILL.md

Triggered when user asks to perform security audits, check for vulnerabilities, or review code for security issues. Automatically delegates to the security-reviewer agent.

development

Updated Mar 30, 2026

$ install --global

skillsauth

npx skillsauth add aconfusedboi/ogie security-audit

Install this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.

Security Scan Results

3 of 9 scanners reported clean

Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.

Scanners Passed

Scanners in report

Clean

TrivyContainer and dependency vulnerability scanner

95%

Clean

SemgrepStatic code analysis for vulnerabilities

95%

Clean

mcp-scan (Snyk)Model Context Protocol security validation

95%

Skipped

Snyk (dep)Open source security scanning

50%

Skipped

Socket.devSupply chain security analysis

50%

Skipped

VirusTotalMulti-engine malware detection

50%

Skipped

CrowdStrikeAdvanced threat intelligence

50%

Skipped

OSV-ScannerOpen Source Vulnerability database check

50%

Skipped

OWASP Dep-Check

50%

Last scanned: Apr 1, 2026, 7:19 AM57.8s1 file scanned

SKILL.md

name:: security-audit
description:: Triggered when user asks to perform security audits, check for vulnerabilities, or review code for security issues. Automatically delegates to the security-reviewer agent.
allowed-tools:: Read, Grep, Glob
context:: fork
agent:: security-reviewer

Security Audit Skill

Trigger Phrases

This skill is automatically triggered when the user:

Asks to "audit security" or "check for vulnerabilities"
Requests security review or assessment
Wants to "scan for security issues"
Mentions "security audit", "penetration test", or "vulnerability scan"
Asks about security best practices

Delegation Instructions

When this skill is triggered:

Delegate immediately to the security-reviewer agent
Specify code or components to audit
Include security focus areas if mentioned
Provide context about sensitive data
Include any compliance requirements

Context to Pass

Code to Audit: Files or components to review
Security Focus: Specific areas (auth, input validation, etc.)
Sensitive Data: Types of sensitive data handled
Compliance: Any compliance requirements (GDPR, HIPAA, etc.)
Threat Model: Known threats or attack vectors
Current Issues: Any known security concerns

Agent Responsibilities

The security-reviewer agent will:

Analyze code for security vulnerabilities
Check authentication and authorization
Review input validation
Identify security risks
Provide security recommendations
Prioritize issues by severity

Usage Examples

Example 1: Code Security Audit

User: "Audit the authentication code for security vulnerabilities"

Delegation: Delegate to security-reviewer with:

Code: Authentication implementation
Focus: Auth security
Context: User authentication flow

Example 2: Pre-Deployment Check

User: "Check the codebase for security issues before deployment"

Delegation: Delegate to security-reviewer with:

Scope: Full codebase
Focus: Critical vulnerabilities
Context: Production deployment

Example 3: Specific Vulnerability

User: "Check if we're vulnerable to SQL injection"

Delegation: Delegate to security-reviewer with:

Focus: SQL injection
Code: Database queries
Context: Database access patterns

Best Practices

Delegate security reviews to security-reviewer
Specify security focus areas
Include compliance requirements
Provide sensitive data context
Request prioritized findings

Related Skills

aconfusedboi/ogie

tools

VerifiedTrustedCommunity

Extract OpenGraph, Twitter Cards, and metadata from URLs or HTML. Use when building link previews, SEO tools, or scraping webpage metadata.

SKILL.mdUpdated Mar 30, 2026

aconfusedboi/write-tests

testing

VerifiedTrustedCommunity

Triggered when user asks to write tests, create test cases, add test coverage, or implement testing. Automatically delegates to the test-writer agent.

SKILL.mdUpdated Mar 30, 2026

aconfusedboi/write-tests

aconfusedboi/write-docs

documentation

VerifiedTrustedCommunity

Triggered when user asks to write documentation, update README, add comments, or create technical docs. Automatically delegates to the docs-writer agent.

SKILL.mdUpdated Mar 30, 2026

aconfusedboi/write-docs

aconfusedboi/write-code

development

VerifiedTrustedCommunity

Triggered when user asks to write code, create files, implement features, add functionality, or generate new code. Automatically delegates to the code-writer agent.

SKILL.mdUpdated Mar 30, 2026

aconfusedboi/write-code

Download

For Claude Desktop. Download once, then upload the file in the app — no terminal needed.

Need help? View full Cowork setup guide →

Install manually

Choose your platform

# Clone the repo
git clone https://github.com/aconfusedboi/ogie.git

# Copy into Claude Code skills folder (global)
cp -r ogie/.claude/skills/security-audit ~/.claude/skills/

Claude Code Skills — official skills path docs.

Repository

aconfusedboi/ogie

Compatible with

Claude Code

OpenAI Codex CLI

ChatGPT