mirror of https://github.com/affaan-m/everything-claude-code.git synced 2026-03-31 06:03:29 +08:00

Files

Affaan Mustafa 0e9f613fd1 Revert "feat(ecc): prune plugin 43→12 items, promote 7 rules to .claude/rules/ (#245 )"

This reverts commit 1bd68ff534.

2026-02-20 01:11:30 -08:00

description, agent, subtask

description	agent	subtask
Run comprehensive security review	security-reviewer	true

Security Review Command

Conduct a comprehensive security review: $ARGUMENTS

Your Task

Analyze the specified code for security vulnerabilities following OWASP guidelines and security best practices.

Injection (SQL, NoSQL, OS command, LDAP)
- Check for parameterized queries
- Verify input sanitization
- Review dynamic query construction
Broken Authentication
- Password storage (bcrypt, argon2)
- Session management
- Multi-factor authentication
- Password reset flows
Sensitive Data Exposure
- Encryption at rest and in transit
- Proper key management
- PII handling
XML External Entities (XXE)
- Disable DTD processing
- Input validation for XML
Broken Access Control
- Authorization checks on every endpoint
- Role-based access control
- Resource ownership validation
Security Misconfiguration
- Default credentials removed
- Error handling doesn't leak info
- Security headers configured
Cross-Site Scripting (XSS)
- Output encoding
- Content Security Policy
- Input sanitization
Insecure Deserialization
- Validate serialized data
- Implement integrity checks
Using Components with Known Vulnerabilities
- Run npm audit
- Check for outdated dependencies
Insufficient Logging & Monitoring
- Security events logged
- No sensitive data in logs
- Alerting configured

[Issues that must be fixed immediately]

[Issues that should be fixed before release]

[Security improvements to consider]

IMPORTANT: Security issues are blockers. Do not proceed until critical issues are resolved.