security-auditor

ovachiever/droid-tings

Automatic security vulnerability detection.

Installs416

Install command

npx skills add https://github.com/ovachiever/droid-tings --skill security-auditor

Security audits

Gen Agent Trust HubPASS

SocketPASS

SnykWARN

About this skill

Automatic security vulnerability detection. 1. SQL Injection 2. XSS (Cross-Site Scripting) 3. Authentication Issues 4. Sensitive Data Exposure 5. Broken Access Control I can run security audits on dependencies: Me (Skill): Quick vulnerability pattern detection @code-reviewer (Sub-Agent): Deep security audit with threat modeling Works without sandboxing: ✅ Yes Works with sandboxing: ✅ Yes Optional: For dependency scanning Add company-specific security patterns: - ✅ Code files modified (especially auth, API, database) - ✅ User mentions security or vulnerabilities - ✅ Before deployments or commits - ✅ Dependency changes - ✅ Configuration file changes - Insecure Deserialization - Security Misconfiguration - Insufficient Logging - CSRF Protection Missing - CORS Misconfiguration - 🚨 CRITICAL : Must fix immediately (exploitable vulnerabilities) - ⚠️ HIGH : Should fix soon (security weaknesses) - 📋 MEDIUM : Consider fixing (potential issues) - 💡 LOW : Best practice improvements - I detect vulnerability pattern - I flag: "🚨 SQL injection detected" - You want full analysis → Invoke @code-reviewer sub-agent - Sub-agent provides comprehensive security audit - Weak password policies - Missing MFA - Session fixation - Insecure password storage - Missing access control - Privilege escalation - IDOR (Insecure Direct Object Reference) - Unencrypted sensitive data - Weak encryption...

Source description provided by the upstream skill listing. Community reviews and install context appear in the sections below.

Community Reviews

Latest reviews

No community reviews yet. Be the first to review.

Browse this skill in context

Agents

codex gemini-cli opencode cursor kimi-cli github-copilot claude-code

Source

ovachiever/droid-tings

FAQ

What does security-auditor do?

Automatic security vulnerability detection.

Is security-auditor good?

security-auditor does not have approved reviews yet, so SkillJury cannot publish a community verdict.

What agent does security-auditor work with?

security-auditor currently lists compatibility with codex, gemini-cli, opencode, cursor, kimi-cli, github-copilot, claude-code.

What are alternatives to security-auditor?

Skills in the same category include telegram-bot-builder, flutter-app-size, sharp-edges, iterative-retrieval.

How do I install security-auditor?

npx skills add https://github.com/ovachiever/droid-tings --skill security-auditor

telegram-bot-builder flutter-app-size sharp-edges iterative-retrieval

Related skills

Alternatives in Software Engineering

telegram-bot-builder

by sickn33/antigravity-awesome-skills

998

Source details, install context, and public review data are available on the full page.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026

flutter-app-size

by flutter/skills

996

Analyzes and optimizes Flutter application size by measuring build artifacts, generating size analysis reports, utilizing Dart DevTools for component breakdown, and implementing specific size reduction strategies such as debug info splitting, resource compression, and platform-specific tree-shaking. Assumes a...

Software EngineeringFrontend and Design

sharp-edges

by trailofbits/skills

994

Evaluates whether APIs, configurations, and interfaces are resistant to developer misuse. Identifies designs where the "easy path" leads to insecurity.

Software EngineeringFrontend and DesignFirst seen Jan 18, 2026