‹ 首页

review-security

@chrisallenlane · 收录于 1 周前

White-box security audit. Blue-teamer and lead red-teamer run in parallel isolation for an independent first pass — neither sees the other's output during reconnaissance. A synthesis step categorizes findings into four prescriptive buckets (anchoring-suppressed, convergent, blue-flagged-unverified, divergent), producing a unified target list. Focused red-teamers then deep-dive each target. Iterates when exploit chains are discovered. Heavy and thorough by design. Advisory only — produces findings and proposes tickets; does not implement remediation.

适合你,如果你需要系统性地发现并分类代码中的安全漏洞

/ 通过 npx 安装 校验哈希
npx oh-my-skill add chrisallenlane/claude-swe-workflows/review-security
/ 通过 bash 安装
curl -fsSL https://oh-my-skill.com/install.sh | bash -s -- chrisallenlane/claude-swe-workflows/review-security
/ 已经装过?验证本机副本,不用重装
npx oh-my-skill verify chrisallenlane/claude-swe-workflows/review-security
安装目标可用 --agent / --scope 或 --to 明确指定;省略时只会在唯一已存在的 agent 目录上自动选择,零命中或多命中会停止并提示。content_hash 缺失或不一致均拒装。
17GitHub stars
~7.4K最小装载
~7.4K含声明引用
~9.6K文本包总量
索引托管

评论

登录即可评论;带「已验证安装」的,是发布者名下有本店的安装或持有记录。