Comprehensive security code review workflow for a target repository, producing a markdown report with findings and recommendations.
47
50%
Does it follow best practices?
Impact
—
No eval scenarios have been run
Risky
Do not use without reviewing
Fix and improve this skill with Tessl
tessl review fix ./sources/skills/security-review/SKILL.md$security-review /path/to/repoIf the repo path is missing or unclear, ask the user for it before proceeding.
Load the security knowledge base from Project CodeGuard
First read the Security_Code_Reviewer_Guidelines.md file bundled with
this skill. Use its purpose and rule-loading strategy to guide the review.
Load all core security rules from Project CodeGuard:
https://github.com/cosai-oasis/project-codeguard/tree/main/sources/rules/coreThese are mandatory foundational rules that must be loaded for every review.
Load relevant OWASP rules for the detected tech stack from:
https://github.com/cosai-oasis/project-codeguard/tree/main/sources/rules/owaspOnly load OWASP rules that match the target repository's technology stack.
Perform deep code analysis
Produce the report in markdown.
./security_report/sec_review_<repo-name>_<YYYY-MM-DD_HH-mm-ss>.md<repo-name> and replace spaces
with -.security_report folder in the current working directory.0b55822
If you maintain this skill, you can claim it as your own. Once claimed, you can manage eval scenarios, bundle related skills, attach documentation or rules, and ensure cross-agent compatibility.