{
"id": "skill:security-review",
"_kind": "Skill",
"_file": "extensions/skills/security-review.yaml",
"_cluster": "extensions",
"attributes": {
"displayName": "Security Review",
"description": "Reviews diffs and modules for common security issues: injection,\nauth/authz gaps, secret handling, deserialization, SSRF, and unsafe\nthird-party usage. Produces structured findings with severity.\n",
"keyword": "security-review",
"entrypoint": "SKILL.md",
"domains": [
"domain:security"
],
"roles": [
"role:code-reviewer"
],
"sourceRef": "source-ref:a5c-plugins-security-review"
},
"outgoingEdges": [
{
"from": "skill:security-review",
"to": "domain:security",
"kind": "applies_to",
"attributes": {
"confidence": "primary"
}
},
{
"from": "skill:security-review",
"to": "domain:cybersecurity",
"kind": "applies_to",
"attributes": {
"confidence": "primary"
}
},
{
"from": "skill:security-review",
"to": "extension-interface:governance",
"kind": "implements",
"attributes": {}
},
{
"from": "skill:security-review",
"to": "extension-interface:secrets",
"kind": "implements",
"attributes": {}
},
{
"from": "skill:security-review",
"to": "source-ref:a5c-plugins-security-review",
"kind": "sourced_from",
"attributes": {}
},
{
"from": "skill:security-review",
"to": "skill-area:web-security",
"kind": "addresses",
"attributes": {}
},
{
"from": "skill:security-review",
"to": "skill-area:sast",
"kind": "addresses",
"attributes": {}
},
{
"from": "skill:security-review",
"to": "skill-area:threat-modeling",
"kind": "addresses",
"attributes": {}
}
],
"incomingEdges": [
{
"from": "plugin:example-native-claude",
"to": "skill:security-review",
"kind": "contains_skill",
"attributes": {}
},
{
"from": "responsibility:review-prs-merge-decisions",
"to": "skill:security-review",
"kind": "requires_skill"
},
{
"from": "responsibility:run-security-scans",
"to": "skill:security-review",
"kind": "requires_skill"
},
{
"from": "scope-boundary:security-review.scope",
"to": "skill:security-review",
"kind": "bounds_subject"
}
]
}