-
Notifications
You must be signed in to change notification settings - Fork 1
Agent Security Auditor
β οΈ Deprecated in v0.10. Merged into Agent-Audit-Specialist. Invoke asaudit-specialist --focus=security <target>instead. This file kept for name resolution only; removed in v0.11. No automatic mapping β invoke explicitly.
OWASP / CVE / auth-boundary focused scanner. One file per invocation. Reports raw findings only.
- Pre-merge security gate on sensitive modules (auth, payments, file upload, admin endpoints)
- Periodic sweep of a specific file
- Main agent runs sibling auditors in parallel across a module
- User asks "is this endpoint safe" with a single file in scope
- Loads matching checklist from
.kasidit/CHECKLISTS/security-*.md(Checklists) - Reads target file end-to-end
- For each checklist item, searches the file mechanically
- Records findings with:
- Exact
file:line - Vulnerability type (SQL inject / XSS / path traversal / etc.)
- Severity: CRITICAL / HIGH / MEDIUM / LOW
- Confidence: high / medium / low / unsure
- Template-based fix hint (not invented)
- Exact
- Emit false positives β prefers
[unsure]over confident wrong - Ship fix patches β scan only; main agent decides action
- Reason across files β stays in scope
- Make architectural suggestions (outside role)
- Single target file path
- Scope: one file or one module at a time
- Checklist hint (optional β matched automatically)
JSON array of findings:
[
{
"file": "path/to/file.php",
"line": 123,
"type": "sql_injection",
"severity": "CRITICAL",
"confidence": "high",
"evidence": "$user_input concatenated in raw query",
"fix_hint": "Use parameterized query with ? placeholders"
}
]When uncertain, tags "confidence": "unsure" with a note on what info would resolve it.
Not tier-pinned. Designed to run in parallel as sibling auditors, so Sonnet is typical per-instance; Opus reserved for cross-cutting review via audit-specialist --focus=quality (in v0.10) or pre-v0.10 the standalone code-reviewer agent.
- β Guessing to appear competent
- β Cross-file reasoning ("this function is unsafe because caller in other file...")
- β Writing the patch instead of the hint
- β Over-reporting β every line flagged "review this" is noise
Introduced pre-v0.9.1 (early release).
Repo β’ Discussions β’ Issues β’ Changelog β’ Security β’ Contributing β’ MIT β’ Β© Kasidit Wansudon
Kasidit
Core
- Commands
- Kasi-Mode π₯ v0.10
- Backend-Hooks π₯ v0.10
- Model Tiers
- Gravity Pattern
- Multi-Agent-Orchestration
- Claude Design Integration
- UI Override Mode
- FAQ
Version History
- Version History β overview
- v0.13.0 β thClaws (Consolidated) π¦
- v0.12.0 β thClaws Runtime Support π¦
- v0.11.0 β Backend + Bridge + Runbook π
- v0.10.0 β Mode + Backend Hooks
- v0.9.2 β Gravity
- v0.9.1 β Master Orchestrator
- v0.9.0 β Claude Design
- v0.8.0 β Tier Cascade
- v0.7.4 β SWE-bench
- v0.3.0 β Tier adaptation
- v0.2.1 β Docs protocol
- v0.2.0 β UI Override
- v0.1.0 β Core
Concepts
Commands
- Kasi-Init
- Kasi-Review
- Kasi-Security
- Kasi-Fix
- Kasi-Ui
- Kasi-Cascade
- Kasi-Multi
- Kasi-Scaffold
- Kasi-Docs
- Kasi-Status
- Kasi-Promote
- Kasi-Pull
- Kasi-Sync
- Kasi-Search
- Kasi-Wiki-Sync
Agents
- Agent-Architect-Planner
- Agent-Audit-Specialist π₯ v0.10
- Agent-Bug-Hunter
- Agent-Deep-Researcher
- Agent-Legacy-Specialist
- Agent-Migration-Specialist
- Agent-Refactor-Surgeon
- Agent-Test-Writer
Deprecated v0.10 (stubs β audit-specialist --focus=..., removed in v0.11)
-
Agent-Code-Reviewer β
--focus=quality -
Agent-Security-Auditor β
--focus=security -
Agent-Perf-Profiler β
--focus=perf