OWASP compliance
security-scanner follows the SKILL.md standard. Use the install command to add it to your agent stack.
--- name: Security Scanner description: OWASP compliance version: 1.0.0 category: security --- # Security Scanning Skill ## OWASP Top 10 1. Access Control - Auth + RBAC 2. Cryptographic - HTTPS + encryption 3. Injection - Validation + parameterized queries 4. Insecure Design - Security by design 5. Misconfiguration - Secure headers 6. Vulnerable Components - npm audit 7. Auth Failures - Strong passwords + MFA 8. Integrity - Dependency verification 9. Logging - Comprehensive logs 10. SSRF - URL validation ## Checklist - [ ] All OWASP Top 10 addressed