Skip to content

Releases: hannsxpeter/secauditor

Release list

secauditor v0.1.0

Choose a tag to compare

@hannsxpeter hannsxpeter released this 18 Jun 12:55
a26dfec

Initial release of secauditor, a read-only security audit skill for AI coding agents.

  • Audits a codebase end to end and writes a scored, prioritized, self-contained secaudit.md, then reports the verdict in chat. Never edits source, never runs exploits.
  • Dual-compatible: invoke /secauditor in Claude Code or $secauditor in Codex (one SKILL.md, the Agent Skills standard).
  • Scores 11 dimensions grounded in OWASP Top 10:2025/2021, OWASP API Top 10 2023, OWASP LLM Top 10 2025, ASVS 5.0, OWASP CI/CD Top 10, CWE Top 25, SLSA v1.2, and CIS Benchmarks. Cloud/IaC and AI/LLM dimensions are conditional with weight re-normalization.

Install

Claude Code:

mkdir -p ~/.claude/skills/secauditor && cp skills/secauditor/SKILL.md ~/.claude/skills/secauditor/SKILL.md

Codex:

mkdir -p ~/.codex/skills/secauditor && cp skills/secauditor/SKILL.md ~/.codex/skills/secauditor/SKILL.md

Package

secauditor-0.1.0.tar.gz contains the full plugin (skill, .claude-plugin/plugin.json manifest, README, LICENSE).

🤖 Generated with Claude Code