security-auditor
Automates security vulnerability scanning for common issues, enhancing code safety before deployments and file changes.
Install this skill
or
83/100
Security score
The security-auditor skill was audited on Mar 1, 2026 and we found 9 security issues across 3 threat categories. Review the findings below before installing.
Categories Tested
Security Issues
medium line 26
Template literal with variable interpolation in command context
SourceSKILL.md
| 26 | const query = `SELECT * FROM users WHERE id = ${userId}`; |
medium line 106
Template literal with variable interpolation in command context
SourceSKILL.md
| 106 | const sql = `SELECT * FROM users WHERE name = '${req.query.name}'`; |
low line 243
Access to hidden dotfiles in home directory
SourceSKILL.md
| 243 | cp -r ~/.claude/skills/security/security-auditor \ |
low line 244
Access to hidden dotfiles in home directory
SourceSKILL.md
| 244 | ~/.claude/skills/security/company-security-auditor |
low line 50
Access to .env file
SourceSKILL.md
| 50 | const token = jwt.sign(payload, process.env.JWT_SECRET); |
low line 147
Access to .env file
SourceSKILL.md
| 147 | const stripe = require('stripe')(process.env.STRIPE_SECRET_KEY); |
low line 116
External URL reference
SourceSKILL.md
| 116 | 📖 https://owasp.org/www-community/attacks/SQL_Injection |
low line 254
External URL reference
SourceSKILL.md
| 254 | - [OWASP Top 10](https://owasp.org/www-project-top-ten/) |
low line 255
External URL reference
SourceSKILL.md
| 255 | - [CWE Top 25](https://cwe.mitre.org/top25/) |
Scanned on Mar 1, 2026
View Security DashboardInstall this skill with one command
/learn @ihmorol/security-auditorGitHub Stars 1
Rate this skill
Categorydevelopment
UpdatedMarch 29, 2026
ihmorol/unsw-nb15-handling-binary-multiclass-ids