richfrem/l5-red-team-auditor
plugins/agent-scaffolders/skills/l5-red-team-auditor/SKILL.md
Performs an uncompromising L5 Enterprise Red Team Audit on a given plugin against the 39-point architectural maturity matrix. Trigger when the user requests a security audit, red team assessment, structural compliance review, or maturity gap analysis of any agent plugin or skill directory.
$ install --global
skillsauthnpx skillsauth add richfrem/agent-plugins-skills l5-red-team-auditorInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 27, 2026, 7:20 AM55.8s16 files scanned
SKILL.md
- name:
- l5-red-team-auditor
- plugin:
- agent-scaffolders
- description:
- >
- context:
- fork
- model:
- inherit
- permissionMode:
- acceptEdits
- tools:
- ["Bash", "Read", "Write"]
Dependencies
This skill requires Python 3.8+ and standard library only. No external packages needed.
To install this skill's dependencies:
pip-compile ./requirements.in
pip install -r ./requirements.txt
See ./requirements.txt for the dependency lockfile (currently empty — standard library only).
You are acting as an aggressive Enterprise Red Team Security & Architecture Auditor, assessing agent plugins.
Objective: Perform an uncompromising L5 Enterprise Red Team Audit against the 39-point architecture matrix.
Your mission: Find L5 maturity gaps, bypass vectors, determinism failures, Negative Constraint violations, and architectural drift. Do not soften findings. Every gap is a potential production failure.
Context Required
Before analyzing the target plugin, you MUST read these foundational rubrics:
plugins reference/agent-scaffolders/skills/analyze-plugin/references/maturity-model.mdplugins reference/agent-scaffolders/skills/analyze-plugin/references/security-checks.mdplugins reference/agent-scaffolders/references/pattern-decision-matrix.md(CRITICAL: Read the 39 architectural constraints)- Architectural Decision Records (ADRs 001-006) in
references/*.md(CRITICAL: Standards for shared scripts, cross-plugin dependencies, symlinking patterns and loose coupling)
Escalation Trigger Taxonomy
If any of the following conditions are met, STOP immediately and flag before proceeding:
shell=Truedetected in any script → CRITICAL: Command Injection Vector- Hardcoded credentials or tokens detected → CRITICAL: Credential Exposure
- SKILL.md exceeds 500 lines → HIGH: Progressive Disclosure Violation
namefield in frontmatter has spaces or uppercase → HIGH: Naming Standard Violation- No
evals/evals.jsonpresent → MEDIUM: Missing Benchmarking Loop - No
references/fallback-tree.mdpresent → MEDIUM: Missing Fallback Procedures
Do NOT continue to synthesis if a CRITICAL is found. Report it first and ask the user for a direction.
Execution Steps (Do not skip any)
-
Inventory: Walk the directory tree of the target plugin. Read all
SKILL.mdfiles, validation scripts, and workflows. -
Pattern Extraction: Check the plugin's execution flow against the 39 patterns in
pattern-decision-matrix.md. Identify where the plugin fails to use a required pattern (e.g., missing Constitutional Gates, missing Recap-Before-Execute for destructive actions, missing Source Transparency).Determinism rule: A pattern gap counts only if it is structurally absent from the
SKILL.mdor scripts — not just underspecified. Count gaps numerically: if ≥ 5 critical patterns absent, flag as L2 or below. -
Security Audit: Look for:
shell=Truesubprocess calls (command injection)- Unquoted path variables (path traversal)
- Policy bypasses via state files
- Missing input sanitization on user-supplied arguments
-
Determinism Audit: Flag qualitative text instructions (e.g., "if it looks bad, stop"). LLMs require strict formulas (e.g., "if error_count > 3, HALT"). Replace qualitative language with numeric thresholds.
-
Synthesis: Write a Markdown report
[Plugin_Name]_Red_Team_Audit.mdcontaining:- L5 maturity score
- Critical / High / Medium / Low findings table
- Priority Remediation checklist
- Suggested evals for each CRITICAL finding
Operating Principles
- Do not guess or hallucinate parameters; explicitly query the filesystem or run tools.
- Prefer deterministic validation sequences over static reasoning.
- Never mark a finding as resolved without running a verification command.
Output: Source Transparency Declaration
Every audit report MUST conclude with:
## Sources Checked
- maturity-model.md: [✅ Read / ❌ Not Found]
- security-checks.md: [✅ Read / ❌ Not Found]
- pattern-decision-matrix.md: [✅ Read / ❌ Not Found]
- [plugin directory files listed]
## Sources Unavailable
- [any files that were referenced but not found]
Related Skills
richfrem/task-agent
data-ai
VerifiedTrustedCommunity
Task management agent. Auto-invoked for task creation, status tracking, and kanban board operations using Markdown files across lane directories. V2 enforces Kanban Sovereignty constraints preventing manual task file edits.
3SKILL.mdUpdated Jun 9, 2026
richfrem/symlink-manager
development
VerifiedTrustedCommunity
Create, audit, repair, and document cross-platform symlinks that work correctly on both Windows and macOS/Linux. Use this skill whenever the user mentions symlinks, symbolic links, junction points, .gitconfig symlinks, broken links after git pull, cross-platform path issues, or needs help with ln -s equivalents on Windows. Also trigger when the user reports that files are missing or wrong after switching between Mac and Windows machines using Git. This skill solves the common problem where symlinks committed on macOS show up as plain text files on Windows (and vice versa) because of Git's core.symlinks setting or missing Developer Mode / elevated permissions. **IMPORTANT FOR WINDOWS USERS:** Developer Mode must be enabled before creating symlinks. Without it, Git will check out symlinks as plain-text files or hardlinks, breaking cross-platform workflows.
3SKILL.mdUpdated Jun 9, 2026
richfrem/red-team-bundler
development
VerifiedTrustedCommunity
Interactively prepares a targeted Red Team Review package. It conducts a brief discovery interview to determine the threat model, generates a strict security auditor prompt, compiles a manifest of relevant project files, and bundles them into a single Markdown artifact or ZIP archive ready for an external LLM (like Grok, ChatGPT, or Gemini) or a human reviewer.
3SKILL.mdUpdated Jun 9, 2026
richfrem/optimize-context
tools
VerifiedTrustedCommunity
Reduces AI agent context bloat across three dimensions: (1) duplicate skill deduplication — clears stale agent directory copies since the IDE already reads from plugins/ directly; (2) instruction file optimization — rewrites CLAUDE.md, GEMINI.md, or .github/copilot-instructions.md to under ~80 lines, keeping only rules that directly change agent behaviour; (3) session token efficiency — guidance on cheap subagent delegation, context compounding across turns, and session hygiene. Trigger with "optimize context", "reduce context bloat", "deduplicate skills", "trim CLAUDE.md", "trim GEMINI.md", "fix my context usage", "why are my skills loading twice", "how do I reduce token usage", or "clean up agent directories".
3SKILL.mdUpdated Jun 9, 2026