security-review
Conducts thorough security code reviews to identify vulnerabilities, ensuring high confidence in findings and systematic reporting.
Install this skill
or
37/100
Security score
The security-review skill was audited on May 18, 2026 and we found 9 security issues across 2 threat categories, including 3 high-severity. Review the findings below before installing.
Categories Tested
Security Issues
high line 192
Direct command execution function call
SourceSKILL.md
| 192 | exec(user_input) # Any language |
high line 198
Direct command execution function call
SourceSKILL.md
| 198 | child_process.exec(user) # Node.js |
high line 191
Eval function call - arbitrary code execution
SourceSKILL.md
| 191 | eval(user_input) # Any language |
medium line 207
Template literal with variable interpolation in command context
SourceSKILL.md
| 207 | `SELECT * FROM x WHERE ${user}` # SQL injection |
medium line 208
System command execution
SourceSKILL.md
| 208 | os.system(f"cmd {user_input}") # Command injection |
low line 198
Node child_process module reference
SourceSKILL.md
| 198 | child_process.exec(user) # Node.js |
medium line 208
Python os.system command execution
SourceSKILL.md
| 208 | os.system(f"cmd {user_input}") # Command injection |
low line 11
External URL reference
SourceSKILL.md
| 11 | https://cheatsheetseries.owasp.org/ |
low line 59
External URL reference
SourceSKILL.md
| 59 | | Hardcoded values | `BASE_URL = "https://api.internal"` | Compile-time constants | |
Scanned on May 18, 2026
View Security DashboardGitHub Stars 2
Rate this skill
Categorydevelopment
UpdatedMay 20, 2026
luokai0/ai-agent-skills-by-luo-kai